Solved BSOD Win 7 Malware Logs

[Resolved] BSOD Win 7 Malware Logs

Malwarebytes Anti-Malware (Trial) 1.70.0.1100
www.malwarebytes.org

Database version: v2013.02.25.06

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Peter :: MEDION1-PC [administrator]

Protection: Enabled

25/02/2013 17:31:06
mbam-log-2013-02-25 (17-31-06).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM
Scan options disabled: P2P
Objects scanned: 245765
Time elapsed: 8 minute(s), 24 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 2
HKCU\SOFTWARE\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.
HKLM\SOFTWARE\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 28
C:\Users\Fran\AppData\Roaming\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\PCOBackups (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 21-36-080 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-26-140 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-22-160 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 20-09-520 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 22-48-480 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-43-430 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Results (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\PCOBackups (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-32-540 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-31-080 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-18-420 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090 (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Results (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Error Fix (Rogue.ErrorFix) -> Quarantined and deleted successfully.

Files Detected: 886
C:\Users\Fran\AppData\Roaming\Error Fix\spy_ignore.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-20 20-45-270.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-20 21-17-160.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-20 21-34-120.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 04-24-570.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 04-28-340.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 08-46-420.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 09-20-590.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 09-25-530.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 20-06-150.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 20-12-490.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 20-24-290.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 20-43-230.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 21-29-180.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 21-30-450.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 22-45-410.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 22-53-370.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 23-42-510.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 23-47-080.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 23-48-540.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 23-51-290.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2012-12-21 23-57-220.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\Logs\2013-02-03 17-33-130.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\PCOBackups\2012-12-20 21-03-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\PCOBackups\2012-12-21 20-10-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\PCOBackups\2012-12-21 23-43-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\file8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-22.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-23.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-24.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-25.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-28.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-29.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-30.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-31.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-32.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-33.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-34.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-35.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-36.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-37.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-38.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-39.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-40.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-41.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-44.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-45.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-46.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-47.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-48.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-50.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-51.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-52.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-53.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-54.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-55.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-56.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-57.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-58.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-60.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-61.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-62.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-63.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-64.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-65.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-66.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-67.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-68.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-69.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-70.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-71.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-72.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-73.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-74.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-75.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-76.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-77.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-78.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-79.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-80.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-81.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-82.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-83.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-84.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 20-48-200\regb-9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 21-36-080\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 21-36-080\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 21-36-080\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-26-140\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-26-140\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-26-140\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-22-160\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-22-160\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 20-09-520\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 20-09-520\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 22-48-480\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 22-48-480\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 22-48-480\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 22-48-480\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-43-430\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-43-430\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-43-430\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-43-430\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\file0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\file1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\file2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Fran\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-36-240\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\spy_ignore.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-20 19-39-310.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-20 20-33-180.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 04-30-350.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 08-31-150.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 08-37-110.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 08-42-190.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 08-57-110.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 09-28-460.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 19-16-310.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 19-18-360.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 22-39-560.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2012-12-21 23-14-520.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-08 13-12-300.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-09 13-13-580.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-17 23-03-010.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-23 23-39-410.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-24 11-49-100.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-01-28 20-32-580.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\Logs\2013-02-03 17-21-480.log (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\PCOBackups\2012-12-20 20-27-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\PCOBackups\2012-12-21 19-22-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\PCOBackups\2012-12-21 23-18-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\file9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-100.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-101.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-102.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-103.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-104.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-105.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-106.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-107.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-108.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-109.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-110.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-111.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-112.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-113.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-114.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-115.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-116.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-117.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-118.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-119.db (Rogue.ErrorFix) -> Quarantined and deleted successful

 

BSOD Win 7 Malware Log Pt 2

ly.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-120.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-121.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-122.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-123.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-124.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-125.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-126.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-127.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-128.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-129.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-130.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-131.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-132.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-133.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-134.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-135.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-136.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-137.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-138.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-139.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-140.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-141.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-142.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-143.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-144.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-145.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-146.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-147.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-148.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-149.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-150.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-151.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-152.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-153.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-154.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-155.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-156.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-157.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-158.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-159.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-160.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-161.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-162.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-163.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-164.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-165.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-166.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-167.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-168.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-169.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-170.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-171.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-172.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-173.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-174.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-175.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-176.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-177.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-178.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-179.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-180.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-181.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-182.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-183.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-184.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-185.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-186.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-187.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-188.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-189.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-190.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-191.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-192.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-193.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-194.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-195.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-196.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-197.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-198.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-199.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-200.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-201.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-202.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-203.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-204.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-205.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-206.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-207.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-208.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-209.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-210.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-211.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-212.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-213.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-214.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-215.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-216.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-217.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-218.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-219.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-22.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-220.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-221.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-222.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-223.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-224.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-225.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-226.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-227.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-228.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-229.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-23.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-230.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-231.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-232.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-233.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-234.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-235.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-236.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-237.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-238.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-239.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-24.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-240.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-241.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-242.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-243.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-244.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-245.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-246.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-247.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-248.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-249.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-25.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-250.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-251.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-252.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-253.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-254.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-255.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-256.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-257.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-258.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-259.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-260.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-261.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-262.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-263.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-264.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-265.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-266.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-267.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-268.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-269.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-270.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-271.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-272.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-273.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-274.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-275.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-276.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-277.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-278.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-279.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-28.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-280.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-281.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-282.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-283.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-284.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-285.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-286.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-287.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-288.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-289.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-29.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-290.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-291.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-292.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-293.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-294.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-295.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-296.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-297.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-298.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-299.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-30.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-300.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-301.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-302.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-303.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-304.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-305.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-306.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-307.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-308.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-309.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-31.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-310.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-311.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-312.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-313.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-314.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-315.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-316.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-317.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-318.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-319.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-32.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-320.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-321.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-322.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-323.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-324.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-325.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-326.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-327.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-328.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-329.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-33.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-330.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-331.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-332.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-333.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-334.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-335.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-336.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-337.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-338.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-339.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-34.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-340.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-341.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-342.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-343.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-344.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-345.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-346.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-347.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-348.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-349.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-35.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-350.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-351.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-352.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-353.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-354.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-355.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-356.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-357.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-358.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-359.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-36.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-360.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-361.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-362.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-363.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-364.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-365.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-366.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-367.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-368.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-369.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-37.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-370.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-371.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-372.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-373.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-374.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-375.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-376.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.

 

BSOD Win7 Malware Part3

C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-377.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-378.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-379.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-38.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-380.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-381.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-382.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-383.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-384.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-385.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-386.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-387.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-388.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-389.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-39.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-390.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-391.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-392.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-393.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-394.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-395.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-396.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-397.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-398.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-399.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-40.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-400.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-401.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-402.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-403.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-404.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-405.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-406.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-407.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-408.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-409.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-41.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-410.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-411.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-412.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-413.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-414.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-415.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-416.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-417.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-418.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-419.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-420.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-421.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-422.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-423.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-424.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-425.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-426.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-427.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-428.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-429.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-430.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-431.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-432.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-433.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-434.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-435.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-436.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-437.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-438.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-439.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-44.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-440.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-441.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-442.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-443.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-444.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-445.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-446.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-447.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-448.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-449.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-45.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-450.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-451.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-452.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-453.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-454.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-455.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-456.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-457.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-458.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-459.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-46.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-460.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-461.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-462.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-463.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-464.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-465.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-466.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-467.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-468.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-469.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-47.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-470.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-471.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-472.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-48.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-50.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-51.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-52.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-53.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-54.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-55.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-56.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-57.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-58.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-60.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-61.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-62.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-63.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-64.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-65.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-66.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-67.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-68.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-69.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-70.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-71.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-72.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-73.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-74.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-75.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-76.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-77.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-78.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-79.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-80.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-81.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-82.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-83.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-84.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-85.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-86.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-87.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-88.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-89.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-90.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-91.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-92.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-93.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-94.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-95.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-96.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-97.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-98.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-20 19-51-480\regb-99.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-32-540\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-32-540\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 04-32-540\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-31-080\file0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-31-080\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-31-080\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 09-31-080\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 19-20-350\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-18-420\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-18-420\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2012-12-21 23-18-420\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-01-08 13-16-220\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\file0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\file1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\file2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\filelist.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-0.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-1.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-10.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-100.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-101.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-102.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-103.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-104.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-105.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-106.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-107.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-108.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-109.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-11.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-110.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-111.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-112.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-113.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-114.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-115.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-116.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-117.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-118.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-119.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-12.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-120.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-121.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-122.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-123.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-124.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-125.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-126.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-127.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-128.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-129.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-13.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-130.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-131.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-132.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-133.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-134.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-135.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-136.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-137.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-138.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-139.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-14.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-140.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-141.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-142.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-143.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-144.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-145.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-146.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-147.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-148.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-149.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.

 

BSOD Win7 Malware Part 4

C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-15.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-150.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-151.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-152.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-153.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-154.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-155.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-156.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-157.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-158.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-159.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-16.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-160.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-161.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-162.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-163.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-164.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-165.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-166.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-167.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-168.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-169.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-17.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-170.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-171.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-172.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-173.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-18.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-19.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-2.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-20.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-21.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-22.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-23.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-24.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-25.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-26.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-27.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-28.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-29.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-3.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-30.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-31.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-32.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-33.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-34.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-35.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-36.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-37.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-38.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-39.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-4.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-40.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-41.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-42.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-43.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-44.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-45.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-46.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-47.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-48.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-49.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-5.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-50.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-51.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-52.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-53.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-54.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-55.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-56.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-57.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-58.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-59.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-6.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-60.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-61.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-62.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-63.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-64.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-65.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-66.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-67.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-68.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-69.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-7.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-70.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-71.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-72.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-73.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-74.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-75.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-76.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-77.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-78.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-79.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-8.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-80.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-81.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-82.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-83.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-84.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-85.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-86.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-87.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-88.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-89.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-9.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-90.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-91.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-92.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-93.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-94.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-95.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-96.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-97.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-98.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Users\Peter\AppData\Roaming\Error Fix\QuarantineW\2013-02-03 17-24-090\regb-99.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\definitions.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\defrag.dll (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\Error Fix - Copy.exe (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\Error Fix.exe (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\Error Fix.url (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\JkDefragLib_sourcecode.zip (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\LGPL for Defragger library.txt (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\privacy.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW.zip (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\startup.db (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\general.html (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\optimizations.html (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\privacy.html (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\scheduler.html (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\startup.html (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\Program Files (x86)\Error Fix\PW\wizard.css (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Error Fix\Error Fix Help.lnk (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Error Fix\Error Fix on the Web.lnk (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Error Fix\Error Fix.lnk (Rogue.ErrorFix) -> Quarantined and deleted successfully.
C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Error Fix\Uninstall Error Fix.lnk (Rogue.ErrorFix) -> Quarantined and deleted successfully.

(end)

 

BSOD WIN 7 asw MBR Files

aswMBR version 0.9.9.1707 Copyright(c) 2011 AVAST Software
Run date: 2013-02-25 18:34:16
-----------------------------
18:34:16.032 OS Version: Windows x64 6.1.7601 Service Pack 1
18:34:16.032 Number of processors: 4 586 0x503
18:34:16.032 ComputerName: MEDION1-PC UserName: Peter
18:34:45.032 Initialize success
18:38:19.452 AVAST engine defs: 13022500
18:39:40.744 Disk 0 (boot) \Device\Harddisk0\DR0 -> \Device\00000059
18:39:40.744 Disk 0 Vendor: Hitachi_ JC4O Size: 953869MB BusType: 11
18:39:40.759 Disk 0 MBR read successfully
18:39:40.759 Disk 0 MBR scan
18:39:40.791 Disk 0 unknown MBR code
18:39:40.791 Disk 0 Partition 1 80 (A) 07 HPFS/NTFS NTFS 100 MB offset 2048
18:39:40.806 Disk 0 Partition 2 00 07 HPFS/NTFS NTFS 922023 MB offset 206848
18:39:40.853 Disk 0 Partition 3 00 07 HPFS/NTFS NTFS 30720 MB offset 1888509952
18:39:40.869 Disk 0 Partition 4 00 12 Compaq diag NTFS 1024 MB offset 1951424512
18:39:40.962 Disk 0 scanning C:\Windows\system32\drivers
18:40:00.166 Service scanning
18:40:46.747 Modules scanning
18:40:46.763 Disk 0 trace - called modules:
18:40:47.293 ntoskrnl.exe CLASSPNP.SYS disk.sys Sahdad64.sys amd_xata.sys storport.sys hal.dll amd_sata.sys
18:40:47.309 1 nt!IofCallDriver -> \Device\Harddisk0\DR0[0xfffffa8004a13060]
18:40:47.309 3 CLASSPNP.SYS[fffff8800199f43f] -> nt!IofCallDriver -> [0xfffffa80048f4a20]
18:40:47.325 5 Sahdad64.sys[fffff8800192ae25] -> nt!IofCallDriver -> [0xfffffa80048d3ac0]
18:40:47.325 7 amd_xata.sys[fffff880010e7d00] -> nt!IofCallDriver -> \Device\00000059[0xfffffa80048cd9c0]
18:40:50.101 AVAST engine scan C:\Windows
18:40:57.745 AVAST engine scan C:\Windows\system32
18:45:52.929 AVAST engine scan C:\Windows\system32\drivers
18:46:14.114 AVAST engine scan C:\Users\Peter
18:52:24.958 AVAST engine scan C:\ProgramData
18:58:01.902 Scan finished successfully
19:06:08.633 Disk 0 MBR has been saved successfully to "C:\Users\Peter\Desktop\MBR.dat "
19:06:08.665 The log file has been saved successfully to "C:\Users\Peter\Desktop\aswMBR.txt "

 

Bsod win 7 dds file

DDS (Ver_2012-11-20.01) - NTFS_AMD64
Internet Explorer: 8.0.7601.17514 BrowserJavaVersion: 10.13.2
Run by Peter at 19:10:28 on 2013-02-25
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.353.1033.18.4095.1408 [GMT 1:00]
.
AV: BullGuard Antivirus *Enabled/Updated* {504FFF66-3028-EB7E-2E60-62B19ADD791C}
SP: BullGuard Antispyware *Enabled/Updated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
============== Running Processes ===============
.
C:\Windows\system32\lsm.exe
C:\Windows\system32\svchost.exe -k DcomLaunch
C:\Windows\system32\svchost.exe -k RPCSS
C:\Windows\system32\atiesrxx.exe
C:\Windows\System32\svchost.exe -k LocalServiceNetworkRestricted
C:\Windows\System32\svchost.exe -k LocalSystemNetworkRestricted
C:\Windows\system32\svchost.exe -k netsvcs
C:\Windows\system32\svchost.exe -k GPSvcGroup
C:\Windows\system32\svchost.exe -k LocalService
C:\Windows\system32\svchost.exe -k NetworkService
C:\Windows\system32\atieclxx.exe
C:\Windows\System32\spoolsv.exe
C:\Windows\system32\svchost.exe -k LocalServiceNoNetwork
C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe
C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy
C:\Windows\System32\SvcHost.exe -k BullGuard_Main
C:\Program Files\Roxio\Roxio Streamer\usb_detection.exe
C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe
C:\Program Files (x86)\LogMeIn\x64\RaMaint.exe
C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe
C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe
C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
C:\Windows\system32\svchost.exe -k imgsvc
C:\Program Files (x86)\Fighters\FighterSuiteService.exe
C:\Windows\System32\SvcHost.exe -k BullGuard
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe
C:\Windows\System32\WUDFHost.exe
C:\Windows\system32\svchost.exe -k NetworkServiceNetworkRestricted
C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamgui.exe
C:\Windows\system32\Dwm.exe
C:\Windows\Explorer.EXE
C:\Windows\system32\taskhost.exe
C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWlan.exe
C:\Windows\System32\rundll32.exe
C:\Program Files\BullGuard Ltd\BullGuard\BullGuard.exe
C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe
C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
C:\Windows\system32\svchost.exe -k LocalServiceAndNoImpersonation
C:\Windows\System32\svchost.exe -k LocalServicePeerNet
C:\Program Files\Windows Media Player\wmpnetwk.exe
C:\Program Files\BullGuard Ltd\BullGuard\files32\spamfilter\LittleHook.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MozyHome\mozybackup.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files\MozyHome\mozybackup.exe
C:\Windows\SysWOW64\Macromed\Flash\FlashUtil32_11_6_602_168_ActiveX.exe
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Program Files (x86)\Internet Explorer\IEXPLORE.EXE
C:\Windows\System32\svchost.exe -k WerSvcGroup
C:\Windows\system32\wbem\wmiprvse.exe
C:\Windows\servicing\TrustedInstaller.exe
C:\Windows\System32\cscript.exe
.
============== Pseudo HJT Report ===============
.
uStart Page = hxxp://www.bbc.co.uk/
mWinlogon: Userinit = userinit.exe,
BHO: Adobe PDF Link Helper: {18DF081C-E8AD-4283-A596-FA578C2EBDC3} - C:\Program Files (x86)\Common Files\Adobe\Acrobat\ActiveX\AcroIEHelperShim.dll
BHO: Java(tm) Plug-In SSV Helper: {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll
BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll
mRun: [NUSB3MON] "C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe "
uPolicies-Explorer: NoThumbnailCache = dword:1
mPolicies-Explorer: NoActiveDesktop = dword:1
mPolicies-Explorer: NoActiveDesktopChanges = dword:1
mPolicies-System: ConsentPromptBehaviorAdmin = dword:5
mPolicies-System: ConsentPromptBehaviorUser = dword:3
mPolicies-System: EnableUIADesktopToggle = dword:0
mPolicies-System: SoftwareSASGeneration = dword:3
IE: {219C3416-8CB2-491a-A3C7-D9FCDDC9D600} - {5F7B1267-94A9-47F5-98DB-E99415F33AEC} - C:\Program Files (x86)\Windows Live\Writer\WriterBrowserExtension.dll
IE: {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BGAntiphishingIE.dll
IE: {92780B25-18CC-41C8-B9BE-3C9C571A8263} - {FF059E31-CC5A-4E2E-BF3B-96E929D65503}
LSP: C:\Windows\System32\BGLsp.dll
DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} - hxxp://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab
DPF: {166B1BCA-3F9C-11CF-8075-444553540000} - hxxp://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {233C1507-6A77-46A4-9443-F871F945D258} - hxxp://download.macromedia.com/pub/shockwave/cabs/director/sw.cab
DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} - hxxp://acs.pandasoftware.com/activescan/cabs/as2stubie.cab
DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab
DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} - hxxps://secure.logmein.com//activex/ractrl.cab?lmi=1007
TCP: NameServer = 192.167.1.1
TCP: Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95} : DHCPNameServer = 192.167.1.1
TCP: Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95}\C456055796473702759664960234C6F657460213 : DHCPNameServer = 192.169.0.1
TCP: Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95}\C45605579647370294E656470234C6F657460213 : DHCPNameServer = 192.169.1.1
TCP: Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95}\C4560557964737F575966496 : DHCPNameServer = 192.167.1.1
TCP: Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95}\E4544574541425 : DHCPNameServer = 192.169.1.1
TCP: Interfaces\{A5E0D0D6-5E75-475C-9667-FFDB8902CEF7} : DHCPNameServer = 192.167.1.1
Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll
Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - C:\Program Files (x86)\Windows Live\Photo Gallery\AlbumDownloadProtocolHandler.dll
AppInit_DLLs= BgGamingMonitor.dll
SSODL: WebCheck - <orphaned>
x64-BHO: Windows Live ID Sign-in Helper: {9030D464-4C02-4ABF-8ECC-5164760863C6} - C:\Program Files\Common Files\Microsoft Shared\Windows Live\WindowsLiveLogin.dll
x64-BHO: Java(tm) Plug-In 2 SSV Helper: {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files\Java\jre6\bin\jp2ssv.dll
x64-Run: [BullGuard] "C:\Program Files\BullGuard Ltd\BullGuard\bullguard.exe" -boot
x64-Run: [LogMeIn GUI] "C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe "
x64-IE: {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - C:\Program Files\BullGuard Ltd\BullGuard\Antiphishing\IE\BGAntiphishingIE.dll
x64-DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} - hxxp://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab
x64-Handler: skype4com - {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - <orphaned>
x64-Handler: wlpg - {E43EF6CD-A37A-4A9B-9E6F-83F89B8E6324} - <orphaned>
x64-SSODL: WebCheck - <orphaned>
.
============= SERVICES / DRIVERS ===============
.
R0 amd_sata;amd_sata;C:\Windows\System32\drivers\amd_sata.sys [2013-1-31 82560]
R0 amd_xata;amd_xata;C:\Windows\System32\drivers\amd_xata.sys [2013-1-31 42624]
R0 pavboot;pavboot;C:\Windows\System32\drivers\pavboot64.sys [2013-2-4 33800]
R0 PxHlpa64;PxHlpa64;C:\Windows\System32\drivers\PxHlpa64.sys [2011-2-13 55856]
R0 Sahdad64;HDD Filter Driver;C:\Windows\System32\drivers\Sahdad64.sys [2011-10-27 27120]
R0 Saibad64;Volume Filter Driver;C:\Windows\System32\drivers\Saibad64.sys [2011-10-27 19952]
R1 BdSpy;BdSpy;C:\Windows\System32\drivers\BdSpy.sys [2011-3-8 66272]
R1 NovaShieldFilterDriver;NovaShieldFilterDriver;C:\Windows\System32\drivers\NSKernel.sys [2011-5-3 256072]
R1 NovaShieldTDIDriver;NovaShieldTDIDriver;C:\Windows\System32\drivers\NSNetmon.sys [2011-5-3 25160]
R1 SaibVdAd64;Virtual Disk Driver;C:\Windows\System32\drivers\SaibVdAd64.sys [2011-10-27 27632]
R2 AMD External Events Utility;AMD External Events Utility;C:\Windows\System32\atiesrxx.exe [2012-12-21 239616]
R2 AMD FUEL Service;AMD FUEL Service;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-9-28 361984]
R2 AODDriver4.2;AODDriver4.2;C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys [2012-4-9 57472]
R2 BsBhvScan;BullGuard behavioural detection service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2012-8-27 368480]
R2 BsFileScan;BullGuard on-access service;C:\Windows\System32\SvcHost.exe -k BullGuard [2009-7-14 27136]
R2 BsMailProxy;BullGuard e-mail monitoring service;C:\Windows\System32\SvcHost.exe -k BullGuard_Proxy [2009-7-14 27136]
R2 BsMain;BullGuard main service;C:\Windows\System32\SvcHost.exe -k BullGuard_Main [2009-7-14 27136]
R2 BsScanner;BullGuard scanning service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2012-8-27 201056]
R2 BsUpdate;BullGuard update service;C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2012-8-27 379744]
R2 HipServUsbDetection;USB detection service for HipServ;C:\Program Files\Roxio\Roxio Streamer\usb_detection.exe [2010-6-22 19968]
R2 LMIGuardianSvc;LMIGuardianSvc;C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2011-6-8 375728]
R2 LMIInfo;LogMeIn Kernel Information Provider;C:\Program Files (x86)\LogMeIn\x64\rainfo.sys [2011-1-11 15928]
R2 LMIRfsDriver;LogMeIn Remote File System Driver;C:\Windows\System32\drivers\LMIRfsDriver.sys [2011-6-29 72216]
R2 MBAMScheduler;MBAMScheduler;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2013-2-25 398184]
R2 MBAMService;MBAMService;C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2013-2-25 682344]
R2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-12-21 794272]
R2 Realtek11nSU;Realtek11nSU;C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2012-8-20 36864]
R2 Suite Service;Suite Service;C:\Program Files (x86)\Fighters\FighterSuiteService.exe [2012-11-12 1270376]
R3 AtiHDAudioService;AMD Function Driver for HD Audio Service;C:\Windows\System32\drivers\AtihdW76.sys [2012-12-21 96896]
R3 AVEO;USB2.0 PC Camera;C:\Windows\System32\drivers\AVEOdcnt.sys [2013-2-21 265728]
R3 MBAMProtector;MBAMProtector;C:\Windows\System32\drivers\mbam.sys [2013-2-25 24176]
R3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;C:\Windows\System32\drivers\nusb3hub.sys [2010-11-19 80384]
R3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;C:\Windows\System32\drivers\nusb3xhc.sys [2010-11-19 181248]
R3 RTL8167;Realtek 8167 NT Driver;C:\Windows\System32\drivers\Rt64win7.sys [2013-2-3 805088]
R3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;C:\Windows\System32\drivers\RTL8192su.sys [2013-2-3 694416]
R3 usbfilter;AMD USB Filter Driver;C:\Windows\System32\drivers\usbfilter.sys [2010-11-10 38528]
S2 clr_optimization_v4.0.30319_32;Microsoft .NET Framework NGEN v4.0.30319_X86;C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe [2010-3-18 130384]
S2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;C:\Windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-3-18 138576]
S2 HipServ;HipServ for Windows;C:\Program Files\Roxio\Roxio Streamer\srvstart\srvstart.exe [2010-5-25 268288]
S2 SkypeUpdate;Skype Updater;C:\Program Files (x86)\Skype\Updater\Updater.exe [2013-2-7 161384]
S3 BOT4Service;BOT4Service;C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe [2010-8-31 39408]
S3 CrossLoopService;CrossLoop Service;C:\Users\Peter\AppData\Local\CrossLoop\CrossLoopService.exe [2012-5-11 569072]
S3 D-Vitec;D-Vitec Driver;C:\Windows\System32\drivers\dvitdcnt.sys [2012-7-26 307968]
S3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;C:\Windows\System32\drivers\rdpvideominiport.sys [2013-1-8 19456]
S3 TsUsbFlt;TsUsbFlt;C:\Windows\System32\drivers\TsUsbFlt.sys [2013-1-8 57856]
S3 tvnserver;TightVNC Server;C:\Users\Peter\AppData\Local\CrossLoop\tvnserver.exe [2012-5-11 814080]
S3 WatAdminSvc;Windows Activation Technologies Service;C:\Windows\System32\Wat\WatAdminSvc.exe [2010-11-10 1255736]
S4 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269;Roxio SAIB Service;C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe [2009-6-2 457200]
S4 BsBackup;BullGuard backup service;C:\Windows\System32\SvcHost.exe -k BullGuard_Backup [2009-7-14 27136]
S4 NAUpdate;Nero Update;C:\Program Files (x86)\Nero\Update\NASvc.exe [2011-11-4 687400]
S4 RoxMediaDB13;RoxMediaDB13;C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxMediaDB13.exe [2010-7-16 1099248]
S4 RoxWatch12;Roxio Hard Drive Watcher 12;C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatch13.exe [2010-7-16 354288]
S4 wlcrasvc;Windows Live Mesh remote connections service;C:\Program Files\Windows Live\Mesh\wlcrasvc.exe [2010-9-23 57184]
.
=============== Created Last 30 ================
.
2013-02-25 16:01:21 -------- d-----w- C:\Users\Peter\AppData\Roaming\Malwarebytes
2013-02-25 16:01:14 -------- d-----w- C:\ProgramData\Malwarebytes
2013-02-25 16:01:13 24176 ----a-w- C:\Windows\System32\drivers\mbam.sys
2013-02-25 16:01:13 -------- d-----w- C:\Program Files (x86)\Malwarebytes' Anti-Malware
2013-02-25 15:59:35 -------- d-----w- C:\Users\Peter\AppData\Local\Programs
2013-02-25 11:41:29 -------- d-----w- C:\Program Files\Speccy
2013-02-25 11:37:43 4812216 ----a-w- C:\spsetup120.exe
2013-02-21 15:56:46 28672 ----a-w- C:\Windows\SysWow64\MFC_InstDrvDLL.dll
2013-02-21 15:56:45 57344 ----a-w- C:\Windows\SysWow64\sx_cam_i420.dll
2013-02-21 15:56:45 36864 ----a-w- C:\Windows\SysWow64\AVEOcamintfc.ax
2013-02-21 15:56:45 265728 ----a-w- C:\Windows\System32\drivers\AVEOdcnt.sys
2013-02-21 15:56:45 -------- d-----w- C:\Program Files (x86)\AVEO UVC Like Driver
2013-02-21 15:22:21 -------- d-----r- C:\Program Files (x86)\Skype
2013-02-21 15:14:26 -------- d-----w- C:\temp
2013-02-21 15:13:18 -------- d-----w- C:\Users\Peter\.yawcam
2013-02-21 15:12:59 -------- d-----w- C:\Program Files (x86)\Yawcam
2013-02-11 21:23:44 -------- d-----w- C:\perflogs
2013-02-06 10:52:44 95648 ----a-w- C:\Windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-04 21:18:37 33800 ----a-w- C:\Windows\System32\drivers\pavboot64.sys
2013-02-03 16:52:56 694416 ----a-w- C:\Windows\System32\drivers\RTL8192su.sys
2013-02-03 16:52:53 805088 ----a-w- C:\Windows\System32\drivers\Rt64win7.sys
2013-02-03 16:52:53 74344 ----a-w- C:\Windows\System32\RtNicProp64.dll
2013-01-31 17:40:14 -------- d-----w- C:\ProgramData\BSD
2013-01-31 17:39:33 -------- d-----w- C:\Users\Peter\AppData\Roaming\Fighters
2013-01-31 17:39:33 -------- d-----w- C:\Program Files (x86)\Fighters
2013-01-31 17:37:21 -------- d-----w- C:\ProgramData\Fighters
.
==================== Find3M ====================
.
2013-02-17 21:02:30 71024 ----a-w- C:\Windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-17 21:02:30 691568 ----a-w- C:\Windows\SysWow64\FlashPlayerApp.exe
2013-02-06 10:52:35 861088 ----a-w- C:\Windows\SysWow64\npdeployJava1.dll
2013-02-06 10:52:35 782240 ----a-w- C:\Windows\SysWow64\deployJava1.dll
2013-01-23 06:12:06 9584 ----a-w- C:\Windows\SysWow64\ractrlkeyhook.dll
2013-01-05 05:53:43 5553512 ----a-w- C:\Windows\System32\ntoskrnl.exe
2013-01-05 05:00:15 3967848 ----a-w- C:\Windows\SysWow64\ntkrnlpa.exe
2013-01-05 05:00:11 3913064 ----a-w- C:\Windows\SysWow64\ntoskrnl.exe
2013-01-04 05:46:09 215040 ----a-w- C:\Windows\System32\winsrv.dll
2013-01-04 04:51:16 5120 ----a-w- C:\Windows\SysWow64\wow32.dll
2013-01-04 04:43:21 44032 ----a-w- C:\Windows\apppatch\acwow64.dll
2013-01-04 03:26:48 3153408 ----a-w- C:\Windows\System32\win32k.sys
2013-01-04 02:47:35 25600 ----a-w- C:\Windows\SysWow64\setup16.exe
2013-01-04 02:47:34 7680 ----a-w- C:\Windows\SysWow64\instnm.exe
2013-01-04 02:47:34 2048 ----a-w- C:\Windows\SysWow64\user.exe
2013-01-04 02:47:33 14336 ----a-w- C:\Windows\SysWow64\ntvdm64.dll
2013-01-03 06:00:54 1913192 ----a-w- C:\Windows\System32\drivers\tcpip.sys
2013-01-03 06:00:42 288088 ----a-w- C:\Windows\System32\drivers\FWPKCLNT.SYS
2012-12-26 17:26:12 107552 ----a-w- C:\Windows\System32\RTNUninst64.dll
2012-12-20 13:59:36 1188864 ----a-w- C:\Windows\System32\wininet.dll
2012-12-20 12:53:51 981504 ----a-w- C:\Windows\SysWow64\wininet.dll
2012-12-20 12:02:26 1638912 ----a-w- C:\Windows\System32\mshtml.tlb
2012-12-20 11:20:29 1638912 ----a-w- C:\Windows\SysWow64\mshtml.tlb
2012-12-16 17:11:22 46080 ----a-w- C:\Windows\System32\atmlib.dll
2012-12-16 14:45:03 367616 ----a-w- C:\Windows\System32\atmfd.dll
2012-12-16 14:13:28 295424 ----a-w- C:\Windows\SysWow64\atmfd.dll
2012-12-16 14:13:20 34304 ----a-w- C:\Windows\SysWow64\atmlib.dll
2012-12-12 18:24:17 1368 ----a-w- C:\Windows\SysWow64\KGyGaAvL.sys
2012-12-07 13:20:16 441856 ----a-w- C:\Windows\System32\Wpc.dll
2012-12-07 13:15:31 2746368 ----a-w- C:\Windows\System32\gameux.dll
2012-12-07 12:26:17 308736 ----a-w- C:\Windows\SysWow64\Wpc.dll
2012-12-07 12:20:43 2576384 ----a-w- C:\Windows\SysWow64\gameux.dll
2012-12-07 11:20:04 30720 ----a-w- C:\Windows\System32\usk.rs
2012-12-07 11:20:03 43520 ----a-w- C:\Windows\System32\csrr.rs
2012-12-07 11:20:03 23552 ----a-w- C:\Windows\System32\oflc.rs
2012-12-07 11:20:01 45568 ----a-w- C:\Windows\System32\oflc-nz.rs
2012-12-07 11:20:01 44544 ----a-w- C:\Windows\System32\pegibbfc.rs
2012-12-07 11:20:01 20480 ----a-w- C:\Windows\System32\pegi-fi.rs
2012-12-07 11:20:00 20480 ----a-w- C:\Windows\System32\pegi-pt.rs
2012-12-07 11:19:59 20480 ----a-w- C:\Windows\System32\pegi.rs
2012-12-07 11:19:58 46592 ----a-w- C:\Windows\System32\fpb.rs
2012-12-07 11:19:57 40960 ----a-w- C:\Windows\System32\cob-au.rs
2012-12-07 11:19:57 21504 ----a-w- C:\Windows\System32\grb.rs
2012-12-07 11:19:57 15360 ----a-w- C:\Windows\System32\djctq.rs
2012-12-07 11:19:56 55296 ----a-w- C:\Windows\System32\cero.rs
2012-12-07 11:19:55 51712 ----a-w- C:\Windows\System32\esrb.rs
2012-11-30 05:45:35 362496 ----a-w- C:\Windows\System32\wow64win.dll
2012-11-30 05:45:35 243200 ----a-w- C:\Windows\System32\wow64.dll
2012-11-30 05:45:35 13312 ----a-w- C:\Windows\System32\wow64cpu.dll
2012-11-30 05:43:12 16384 ----a-w- C:\Windows\System32\ntvdm64.dll
2012-11-30 05:41:07 424448 ----a-w- C:\Windows\System32\KernelBase.dll
2012-11-30 04:53:59 274944 ----a-w- C:\Windows\SysWow64\KernelBase.dll
2012-11-30 03:23:48 338432 ----a-w- C:\Windows\System32\conhost.exe
2012-11-30 02:38:59 6144 ---ha-w- C:\Windows\SysWow64\api-ms-win-security-base-l1-1-0.dll
2012-11-30 02:38:59 4608 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-30 02:38:59 3584 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-xstate-l1-1-0.dll
2012-11-30 02:38:59 3072 ---ha-w- C:\Windows\SysWow64\api-ms-win-core-util-l1-1-0.dll
.
============= FINISH: 19:13:05.10 ===============

 

BSOD WIN7 Attach file

.
UNLESS SPECIFICALLY INSTRUCTED, DO NOT POST THIS LOG.
IF REQUESTED, ZIP IT UP & ATTACH IT
.
DDS (Ver_2012-11-20.01)
.
Microsoft Windows 7 Home Premium
Boot Device: \Device\HarddiskVolume1
Install Date: 12/02/2011 18:33:25
System Uptime: 25/02/2013 18:25:56 (1 hours ago)
.
Motherboard: MEDIONPC | | MS-7713
Processor: AMD Athlon(tm) II X4 640 Processor | CPU 1 | 3000/200mhz
.
==== Disk Partitions =========================
.
C: is FIXED (NTFS) - 900 GiB total, 715.894 GiB free.
D: is FIXED (NTFS) - 30 GiB total, 10.373 GiB free.
E: is CDROM ()
F: is CDROM ()
G: is Removable
H: is Removable
J: is Removable
.
==== Disabled Device Manager Items =============
.
==== System Restore Points ===================
.
RP206: 08/01/2013 21:07:26 - Windows Update
RP207: 15/01/2013 21:23:19 - Windows Update
RP208: 22/01/2013 22:53:52 - Scheduled Checkpoint
RP209: 30/01/2013 13:39:06 - Scheduled Checkpoint
RP210: 31/01/2013 18:38:52 - Installed DRIVERfighter.
RP211: 31/01/2013 19:07:35 - DRIVERfighter: Updating Drivers
RP212: 01/02/2013 11:28:17 - Installed Java 7 Update 11
RP213: 03/02/2013 17:52:25 - DRIVERfighter: Updating Drivers
RP214: 06/02/2013 11:51:29 - Installed Java 7 Update 13
RP215: 12/02/2013 19:57:15 - Windows Update
RP216: 19/02/2013 21:42:37 - Scheduled Checkpoint
RP217: 20/02/2013 22:18:05 - drop outs
RP218: 21/02/2013 16:56:16 - Installed AVEO UVC Like Driver
RP219: 24/02/2013 19:18:42 - Installed Renesas Electronics USB 3.0 Host Controller Driver
.
==== Installed Programs ======================
.
Acrobat.com
Adobe Flash Player 11 ActiveX
Adobe Flash Player 11 Plugin
Adobe Reader XI (11.0.01)
Adobe Shockwave Player 11.6
AMD Accelerated Video Transcoding
AMD APP SDK Runtime
AMD Catalyst Install Manager
AMD Drag and Drop Transcoding
AMD Fuel
AMD Media Foundation Decoders
AMD VISION Engine Control Center
Apple Application Support
Apple Software Update
Ashampoo Burning Studio
Ashampoo Photo Commander
Ashampoo Photo Optimizer
Ashampoo Snap
AVEO UVC Like Driver
BIAS SoundSoap SE 2.4
BullGuard
Cakewalk Home Studio 9
Catalyst Control Center - Branding
Catalyst Control Center Graphics Previews Common
Catalyst Control Center InstallProxy
Catalyst Control Center Localization All
ccc-utility64
CCC Help Chinese Standard
CCC Help Chinese Traditional
CCC Help Czech
CCC Help Danish
CCC Help Dutch
CCC Help English
CCC Help Finnish
CCC Help French
CCC Help German
CCC Help Greek
CCC Help Hungarian
CCC Help Italian
CCC Help Japanese
CCC Help Korean
CCC Help Norwegian
CCC Help Polish
CCC Help Portuguese
CCC Help Russian
CCC Help Spanish
CCC Help Swedish
CCC Help Thai
CCC Help Turkish
Cisco EAP-FAST Module
Cisco LEAP Module
Cisco PEAP Module
Contents
Contrôle ActiveX Windows Live Mesh pour connexions à distance
Control ActiveX de Windows Live Mesh para conexiones remotas
Controlo ActiveX do Windows Live Mesh para Ligações Remotas
Corel Paint Shop Pro Photo XI
Corel PaintShop Photo Pro X3
Corel Shell Extension - 64Bit
CorelDRAW Essentials 4
CorelDRAW Essentials 4 - Content
CorelDRAW Essentials 4 - Draw
CorelDRAW Essentials 4 - Filters
CorelDRAW Essentials 4 - ICA
CorelDRAW Essentials 4 - IPM - No VBA
CorelDRAW Essentials 4 - Lang BR
CorelDRAW Essentials 4 - Lang DE
CorelDRAW Essentials 4 - Lang EN
CorelDRAW Essentials 4 - Lang ES
CorelDRAW Essentials 4 - Lang FR
CorelDRAW Essentials 4 - Lang IT
CorelDRAW Essentials 4 - Lang NL
CorelDRAW Essentials 4 - PHOTO-PAINT
CorelDRAW Essentials 4 - Windows Shell Extension
CrossLoop 2.82
CyberLink LabelPrint
CyberLink Power2Go
CyberLink PowerDVD Copy
D3DX10
DeviceIO
DRIVERfighter
EasyBook v4.1 - Free 30 Day Trial
Error Fix
Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsluge polaczen zdalnych
Fotogalerija Windows Live
Free Image Converter
Galeria de Fotografias do Windows Live
Galeria fotografii uslugi Windows Live
Galerie de photos Windows Live
Galería fotográfica de Windows Live
Google Update Helper
greenstreet Publisher 4.01
greenstreet Utilities
High-Definition Video Playback
ICA
Intel(R) IPP Run-Time Installer 5.2 for Windows* on IA-32
IPM_PSP_Pro
Java 7 Update 13
Java Auto Updater
Java(TM) 6 Update 22 (64-bit)
Java(TM) 6 Update 37
Junk Mail filter update
Knoll Light Factory EZ Studio
Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave
LogMeIn
Magic Bullet Looks Studio
Malwarebytes Anti-Malware version 1.70.0.1100
Medion Home Cinema
Mesh Runtime
Microsoft .NET Framework 4 Client Profile
Microsoft Application Error Reporting
Microsoft Office 2010
Microsoft Office File Validation Add-In
Microsoft Office Professional Edition 2003
Microsoft Primary Interoperability Assemblies 2005
Microsoft Silverlight
Microsoft SQL Server 2005 Compact Edition [ENU]
Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
Microsoft Visual C++ 2005 Redistributable
Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
MLE
Mozy Restore Manager
MozyHome
MSVCRT
MSVCRT_amd64
MSXML 4.0 SP2 (KB973688)
MSXML 4.0 SP3 Parser
MSXML 4.0 SP3 Parser (KB2721691)
MSXML 4.0 SP3 Parser (KB2758694)
Nero 10 Menu TemplatePack Basic
Nero 10 Movie ThemePack Basic
Nero Audio Pack 1
Nero BackItUp 10
Nero BackItUp 10 Help (CHM)
Nero Burning ROM 10
Nero BurningROM 10 Help (CHM)
Nero BurnRights 10
Nero BurnRights 10 Help (CHM)
Nero Control Center 10
Nero ControlCenter 10 Help (CHM)
Nero Core Components 10
Nero Core Components 11
Nero CoverDesigner 10
Nero CoverDesigner 10 Help (CHM)
Nero DiscSpeed 10
Nero DiscSpeed 10 Help (CHM)
Nero Express 10
Nero Express 10 Help (CHM)
Nero InfoTool 10
Nero InfoTool 10 Help (CHM)
Nero Kwik Media
Nero Kwik Media Help (CHM)
Nero Multimedia Suite 10
Nero Prerequisite Installer 1.0
Nero Recode 10
Nero Recode 10 Help (CHM)
Nero RescueAgent 10
Nero RescueAgent 10 Help (CHM)
Nero SoundTrax 10
Nero SoundTrax 10 Help (CHM)
Nero StartSmart 10
Nero StartSmart 10 Help (CHM)
Nero Update
Nero Vision 10
Nero Vision 10 Help (CHM)
Nero WaveEditor 10
Nero WaveEditor 10 Help (CHM)
nero.prerequisites.msi
Panda ActiveScan 2.0
Panda Cloud Cleaner
PC Tools Registry Mechanic 11.1
Pdf995
Pinnacle Studio 14
Pinnacle Studio Ultimate Collection Plugins
Pinnacle Video Driver
PlayReady PC Runtime amd64
Poczta uslugi Windows Live
Podstawowe programy Windows Live
Pošta Windows Live
PSPH10Pro
PSPPContent
PSPPRO_DCRAW
PureHD
QuickTime
Raccolta foto di Windows Live
RBVirtualFolder64Inst
Readiris Pro 12
Realtek High Definition Audio Driver
REALTEK Wireless LAN Driver and Utility
Red Giant ToonIt Studio
Renesas Electronics USB 3.0 Host Controller Driver
Roxio BackOnTrack
Roxio BackOnTrackPE
Roxio Burn - Secure
Roxio CinePlayer
Roxio CinePlayer Decoder Pack
Roxio Creator 2011 Content
Roxio Creator 2011 Pro
Roxio PhotoShow
Roxio Streamer Desktop Applications
Roxio Streamer x64
Roxio Video Capture USB
S?????? f?t???af??? t?? Windows Live
Security Update for Microsoft .NET Framework 4 Client Profile (KB2160841)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2446708)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2478663)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2518870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2539636)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2572078)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2604121)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2633870)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656351)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656368v2)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2656405)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2686827)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2729449)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2737019)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2742595)
Security Update for Microsoft .NET Framework 4 Client Profile (KB2789642)
Setup
Share
Share64
Skypeâ„¢ 6.2
SmartSound Common Data
SmartSound Quicktracks 5
SmartSound Sonicfire Pro 5
Speccy
Spelling Dictionaries Support For Adobe Reader 9
St???e?? e?????? ActiveX t?? Windows Live Mesh ??a ap?µa???sµ??e? s??d?se??
swMSM
Trapcode 3DStroke Studio
Trapcode Particular Studio
Trapcode Shine Studio
Update for Microsoft .NET Framework 4 Client Profile (KB2468871)
Update for Microsoft .NET Framework 4 Client Profile (KB2533523)
Update for Microsoft .NET Framework 4 Client Profile (KB2600217)
Uzak Baglantilar Için Windows Live Mesh ActiveX Denetimi
VD64Inst
VIO
VPNUK Connection Assistant 9.0
Windows 7 Upgrade Advisor
Windows Driver Package - AMD (amd_sata) HDC (04/11/2012 1.2.001.0331)
Windows Driver Package - Realtek (RTL8167) Net (10/25/2012 7.065.1025.2012)
Windows Driver Package - Realtek (RTL8167) Net (12/26/2012 7.067.1226.2012)
Windows Driver Package - Realtek Semiconductor Corp. (RTL8192su) Net (05/22/2012 1086.49.0522.2012)
Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (06/19/2012 6.0.1.6662)
Windows Driver Package - Renesas Electronics (nusb3hub) USB (08/21/2012 2.1.39.0)
Windows Live
Windows Live Communications Platform
Windows Live Essentials
Windows Live Fotótár
Windows Live Fotogalerie
Windows Live Fotograf Galerisi
Windows Live ID Sign-in Assistant
Windows Live Installer
Windows Live Language Selector
Windows Live Mail
Windows Live Mesh
Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
Windows Live Mesh ActiveX-objekt til fjernforbindelser
Windows Live Mesh ActiveX-vezérlo távoli kapcsolatokhoz
Windows Live Mesh ActiveX control for remote connections
Windows Live Messenger
Windows Live MIME IFilter
Windows Live Movie Maker
Windows Live Photo Common
Windows Live Photo Gallery
Windows Live PIMT Platform
Windows Live Remote Client
Windows Live Remote Client Resources
Windows Live Remote Service
Windows Live Remote Service Resources
Windows Live SOXE
Windows Live SOXE Definitions
Windows Live Temel Parçalar
Windows Live UX Platform
Windows Live UX Platform Language Pack
Windows Live Writer
Windows Live Writer Resources
Windows Media Encoder 9 Series
WinRAR 4.10 beta 2 (32-bit)
.
==== Event Viewer Messages From Past Week ========
.
25/02/2013 15:53:36, Error: Service Control Manager [7011] - A timeout (40000 milliseconds) was reached while waiting for a transaction response from the Realtek11nSU service.
25/02/2013 10:29:01, Error: Server [2505] - The server could not bind to the transport \Device\NetBT_Tcpip_{45BF1140-E332-424E-9553-8502DE1379FE} because another computer on the network has the same name. The server could not start.
23/02/2013 17:31:24, Error: Microsoft-Windows-WHEA-Logger [20] - A fatal hardware error has occurred. Component: AMD Northbridge Error Source: Machine Check Exception Error Type: HyperTransport Watchdog Timeout Error Processor ID: 0 The details view of this entry contains further information.
23/02/2013 17:30:53, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800536f8f8, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:\Windows\Minidump\022313-27222-01.dmp. Report Id: 022313-27222-01.
19/02/2013 15:55:11, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa800536b808, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:\Windows\Minidump\021913-29031-01.dmp. Report Id: 021913-29031-01.
19/02/2013 11:30:43, Error: Microsoft-Windows-WER-SystemErrorReporting [1001] - The computer has rebooted from a bugcheck. The bugcheck was: 0x00000124 (0x0000000000000000, 0xfffffa8005328038, 0x0000000000000000, 0x0000000000000000). A dump was saved in: C:\Windows\Minidump\021913-29047-01.dmp. Report Id: 021913-29047-01.
18/02/2013 14:42:21, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {D3DCB472-7261-43CE-924B-0704BD730D5F} and APPID {D3DCB472-7261-43CE-924B-0704BD730D5F} to the user medion1-PC\Fran SID (S-1-5-21-561210605-1100357726-2750954237-1001) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
18/02/2013 14:42:21, Error: Microsoft-Windows-DistributedCOM [10016] - The application-specific permission settings do not grant Local Activation permission for the COM Server application with CLSID {145B4335-FE2A-4927-A040-7C35AD3180EF} and APPID {145B4335-FE2A-4927-A040-7C35AD3180EF} to the user medion1-PC\Fran SID (S-1-5-21-561210605-1100357726-2750954237-1001) from address LocalHost (Using LRPC). This security permission can be modified using the Component Services administrative tool.
.
==== End Of File ===========================

 

Logs as requested - 4 enclosed

RogueKiller V8.5.2 [Feb 23 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Peter [Admin rights]
Mode : Scan -- Date : 02/26/2013 08:09:17
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowMyGames (0) -> FOUND
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRun (0) -> FOUND

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HCS5C1010CLA382 SATA Disk Device +++++
--- User ---
[MBR] f185834cabd2892c59f46d21af627f0e
[BSP] bb7421c2892c2c6e196fbb5b8685b033 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 922023 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1888509952 | Size: 30720 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 1951424512 | Size: 1024 Mo
User = LL1 ... OK!
User = LL2 ... OK!

Finished : << RKreport[1]_S_02262013_02d0809.txt >>
RKreport[1]_S_02262013_02d0809.txt

RogueKiller V8.5.2 [Feb 23 2013] by Tigzy
mail : tigzyRK<at>gmail<dot>com
Feedback : http://www.geekstogo.com/forum/files/file/413-roguekiller/
Website : http://tigzy.geekstogo.com/roguekiller.php
Blog : http://tigzyrk.blogspot.com/

Operating System : Windows 7 (6.1.7601 Service Pack 1) 64 bits version
Started in : Normal mode
User : Peter [Admin rights]
Mode : Remove -- Date : 02/26/2013 08:10:55
| ARK || FAK || MBR |

¤¤¤ Bad processes : 0 ¤¤¤

¤¤¤ Registry Entries : 2 ¤¤¤
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowMyGames (0) -> REPLACED (1)
[HJ SMENU] HKLM\[...]\Advanced : Start_ShowRun (0) -> REPLACED (1)

¤¤¤ Particular Files / Folders: ¤¤¤

¤¤¤ Driver : [NOT LOADED] ¤¤¤

¤¤¤ HOSTS File: ¤¤¤
--> C:\Windows\system32\drivers\etc\hosts



¤¤¤ MBR Check: ¤¤¤

+++++ PhysicalDrive0: Hitachi HCS5C1010CLA382 SATA Disk Device +++++
--- User ---
[MBR] f185834cabd2892c59f46d21af627f0e
[BSP] bb7421c2892c2c6e196fbb5b8685b033 : Windows Vista/7/8 MBR Code
Partition table:
0 - [ACTIVE] NTFS (0x07) [VISIBLE] Offset (sectors): 2048 | Size: 100 Mo
1 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 206848 | Size: 922023 Mo
2 - [XXXXXX] NTFS (0x07) [VISIBLE] Offset (sectors): 1888509952 | Size: 30720 Mo
3 - [XXXXXX] COMPAQ (0x12) [VISIBLE] Offset (sectors): 1951424512 | Size: 1024 Mo
User = LL1 ... OK!
User = LL2 ... OK!

+++++ PhysicalDrive1: Generic CF Card Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive2: Generic SD MS Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

+++++ PhysicalDrive3: Generic SMC xD Reader USB Device +++++
Error reading User MBR!
User = LL1 ... OK!
Error reading LL2 MBR!

Finished : << RKreport[2]_D_02262013_02d0810.txt >>
RKreport[1]_S_02262013_02d0809.txt ; RKreport[2]_D_02262013_02d0810.txt


Malwarebytes Anti-Rootkit BETA 1.01.0.1020
www.malwarebytes.org

Database version: v2013.02.26.03

Windows 7 Service Pack 1 x64 NTFS
Internet Explorer 8.0.7601.17514
Peter :: MEDION1-PC [administrator]

26/02/2013 08:47:42
mbar-log-2013-02-26 (08-47-42).txt

Scan type: Quick scan
Scan options enabled: Memory | Startup | Registry | File System | Heuristics/Extra | Heuristics/Shuriken | PUP | PUM | P2P
Scan options disabled:
Objects scanned: 33004
Time elapsed: 29 minute(s), 13 second(s)

Memory Processes Detected: 0
(No malicious items detected)

Memory Modules Detected: 0
(No malicious items detected)

Registry Keys Detected: 0
(No malicious items detected)

Registry Values Detected: 0
(No malicious items detected)

Registry Data Items Detected: 0
(No malicious items detected)

Folders Detected: 0
(No malicious items detected)

Files Detected: 0
(No malicious items detected)

(end)

---------------------------------------
Malwarebytes Anti-Rootkit BETA 1.01.0.1020

(c) Malwarebytes Corporation 2011-2012

OS version: 6.1.7601 Windows 7 Service Pack 1 x64

Account is Administrative

Internet Explorer version: 8.0.7601.17514

Java version: 1.6.0_37

File system is: NTFS
Disk drives: C:\ DRIVE_FIXED, D:\ DRIVE_FIXED
CPU speed: 3.000000 GHz
Memory total: 4294221824, free: 2685734912

------------ Kernel report ------------
02/26/2013 08:18:08
------------ Loaded modules -----------
\SystemRoot\system32\ntoskrnl.exe
\SystemRoot\system32\hal.dll
\SystemRoot\system32\kdcom.dll
\SystemRoot\system32\mcupdate_AuthenticAMD.dll
\SystemRoot\system32\PSHED.dll
\SystemRoot\system32\CLFS.SYS
\SystemRoot\system32\CI.dll
\SystemRoot\system32\drivers\Wdf01000.sys
\SystemRoot\system32\drivers\WDFLDR.SYS
\SystemRoot\system32\drivers\ACPI.sys
\SystemRoot\system32\drivers\WMILIB.SYS
\SystemRoot\system32\drivers\msisadrv.sys
\SystemRoot\system32\drivers\pci.sys
\SystemRoot\system32\drivers\vdrvroot.sys
\SystemRoot\System32\drivers\partmgr.sys
\SystemRoot\system32\drivers\volmgr.sys
\SystemRoot\System32\drivers\volmgrx.sys
\SystemRoot\system32\drivers\pciide.sys
\SystemRoot\system32\drivers\PCIIDEX.SYS
\SystemRoot\System32\drivers\mountmgr.sys
\SystemRoot\system32\drivers\pavboot64.sys
\SystemRoot\system32\drivers\atapi.sys
\SystemRoot\system32\drivers\ataport.SYS
\SystemRoot\system32\DRIVERS\amd_sata.sys
\SystemRoot\system32\DRIVERS\storport.sys
\SystemRoot\system32\DRIVERS\amd_xata.sys
\SystemRoot\system32\drivers\amdxata.sys
\SystemRoot\system32\drivers\fltmgr.sys
\SystemRoot\system32\drivers\fileinfo.sys
\SystemRoot\System32\Drivers\PxHlpa64.sys
\SystemRoot\System32\Drivers\Ntfs.sys
\SystemRoot\System32\Drivers\msrpc.sys
\SystemRoot\System32\Drivers\ksecdd.sys
\SystemRoot\System32\Drivers\cng.sys
\SystemRoot\System32\drivers\pcw.sys
\SystemRoot\System32\Drivers\Fs_Rec.sys
\SystemRoot\system32\drivers\ndis.sys
\SystemRoot\system32\drivers\NETIO.SYS
\SystemRoot\System32\Drivers\ksecpkg.sys
\SystemRoot\System32\drivers\tcpip.sys
\SystemRoot\System32\drivers\fwpkclnt.sys
\SystemRoot\system32\drivers\volsnap.sys
\SystemRoot\System32\Drivers\spldr.sys
\SystemRoot\System32\drivers\rdyboost.sys
\SystemRoot\System32\Drivers\Saibad64.sys
\SystemRoot\System32\Drivers\Sahdad64.sys
\SystemRoot\System32\Drivers\mup.sys
\SystemRoot\System32\drivers\hwpolicy.sys
\SystemRoot\System32\DRIVERS\fvevol.sys
\SystemRoot\system32\DRIVERS\disk.sys
\SystemRoot\system32\DRIVERS\CLASSPNP.SYS
\SystemRoot\system32\DRIVERS\AtiPcie64.sys
\SystemRoot\system32\DRIVERS\cdrom.sys
\SystemRoot\system32\DRIVERS\BdSpy.sys
\SystemRoot\system32\DRIVERS\NSKernel.sys
\SystemRoot\system32\DRIVERS\mozy.sys
\SystemRoot\System32\Drivers\Null.SYS
\SystemRoot\System32\Drivers\Beep.SYS
\SystemRoot\System32\drivers\vga.sys
\SystemRoot\System32\drivers\VIDEOPRT.SYS
\SystemRoot\System32\drivers\watchdog.sys
\SystemRoot\System32\DRIVERS\RDPCDD.sys
\SystemRoot\system32\drivers\rdpencdd.sys
\SystemRoot\system32\drivers\rdprefmp.sys
\SystemRoot\System32\Drivers\Msfs.SYS
\SystemRoot\System32\Drivers\Npfs.SYS
\SystemRoot\system32\DRIVERS\tdx.sys
\SystemRoot\system32\DRIVERS\TDI.SYS
\SystemRoot\system32\DRIVERS\NSNetmon.sys
\SystemRoot\system32\drivers\afd.sys
\SystemRoot\System32\DRIVERS\netbt.sys
\SystemRoot\system32\drivers\ws2ifsl.sys
\SystemRoot\system32\DRIVERS\wfplwf.sys
\SystemRoot\system32\DRIVERS\pacer.sys
\SystemRoot\system32\DRIVERS\vwififlt.sys
\SystemRoot\system32\DRIVERS\netbios.sys
\SystemRoot\system32\DRIVERS\wanarp.sys
\SystemRoot\system32\DRIVERS\VBoxDrv.sys
\SystemRoot\system32\drivers\termdd.sys
\SystemRoot\System32\Drivers\SaibVdAd64.sys
\SystemRoot\system32\DRIVERS\rdbss.sys
\SystemRoot\system32\drivers\nsiproxy.sys
\SystemRoot\system32\drivers\mssmbios.sys
\SystemRoot\System32\drivers\discache.sys
\SystemRoot\System32\Drivers\dfsc.sys
\SystemRoot\system32\DRIVERS\blbdrive.sys
\SystemRoot\system32\DRIVERS\tunnel.sys
\SystemRoot\system32\DRIVERS\amdppm.sys
\SystemRoot\system32\DRIVERS\atikmpag.sys
\SystemRoot\system32\DRIVERS\atikmdag.sys
\SystemRoot\System32\drivers\dxgkrnl.sys
\SystemRoot\System32\drivers\dxgmms1.sys
\SystemRoot\system32\drivers\HDAudBus.sys
\SystemRoot\system32\DRIVERS\Rt64win7.sys
\SystemRoot\system32\DRIVERS\nusb3xhc.sys
\SystemRoot\system32\DRIVERS\USBD.SYS
\SystemRoot\system32\DRIVERS\usbfilter.sys
\SystemRoot\system32\DRIVERS\usbohci.sys
\SystemRoot\system32\DRIVERS\USBPORT.SYS
\SystemRoot\system32\DRIVERS\usbehci.sys
\SystemRoot\system32\drivers\i8042prt.sys
\SystemRoot\system32\drivers\kbdclass.sys
\SystemRoot\system32\DRIVERS\mouclass.sys
\SystemRoot\system32\drivers\CompositeBus.sys
\SystemRoot\system32\DRIVERS\AgileVpn.sys
\SystemRoot\system32\DRIVERS\rasl2tp.sys
\SystemRoot\system32\DRIVERS\ndistapi.sys
\SystemRoot\system32\DRIVERS\ndiswan.sys
\SystemRoot\system32\DRIVERS\raspppoe.sys
\SystemRoot\system32\DRIVERS\raspptp.sys
\SystemRoot\system32\DRIVERS\rassstp.sys
\SystemRoot\system32\drivers\swenum.sys
\SystemRoot\system32\drivers\ks.sys
\SystemRoot\system32\DRIVERS\MarvinBus64.sys
\SystemRoot\system32\drivers\umbus.sys
\SystemRoot\system32\DRIVERS\nusb3hub.sys
\SystemRoot\system32\DRIVERS\usbhub.sys
\SystemRoot\System32\Drivers\NDProxy.SYS
\SystemRoot\system32\drivers\AtihdW76.sys
\SystemRoot\system32\drivers\portcls.sys
\SystemRoot\system32\drivers\drmk.sys
\SystemRoot\system32\drivers\ksthunk.sys
\SystemRoot\system32\drivers\RTKVHD64.sys
\SystemRoot\System32\win32k.sys
\SystemRoot\System32\drivers\Dxapi.sys
\SystemRoot\System32\Drivers\crashdmp.sys
\SystemRoot\System32\Drivers\dump_diskdump.sys
\SystemRoot\System32\Drivers\dump_amd_sata.sys
\SystemRoot\System32\Drivers\dump_dumpfve.sys
\SystemRoot\system32\DRIVERS\monitor.sys
\SystemRoot\system32\DRIVERS\USBSTOR.SYS
\SystemRoot\system32\DRIVERS\RTL8192su.sys
\SystemRoot\system32\DRIVERS\vwifibus.sys
\SystemRoot\system32\DRIVERS\hidusb.sys
\SystemRoot\system32\DRIVERS\HIDCLASS.SYS
\SystemRoot\system32\DRIVERS\HIDPARSE.SYS
\SystemRoot\system32\DRIVERS\mouhid.sys
\SystemRoot\system32\DRIVERS\usbccgp.sys
\SystemRoot\system32\DRIVERS\AVEOdcnt.sys
\SystemRoot\System32\TSDDD.dll
\SystemRoot\System32\cdd.dll
\SystemRoot\system32\drivers\luafv.sys
\??\C:\Windows\system32\drivers\mbam.sys
\SystemRoot\system32\drivers\WudfPf.sys
\SystemRoot\system32\DRIVERS\lltdio.sys
\SystemRoot\system32\DRIVERS\nwifi.sys
\SystemRoot\system32\DRIVERS\ndisuio.sys
\SystemRoot\system32\DRIVERS\rspndr.sys
\SystemRoot\system32\DRIVERS\vwifimp.sys
\SystemRoot\system32\drivers\HTTP.sys
\SystemRoot\system32\DRIVERS\bowser.sys
\SystemRoot\System32\drivers\mpsdrv.sys
\SystemRoot\system32\DRIVERS\mrxsmb.sys
\SystemRoot\system32\DRIVERS\mrxsmb10.sys
\SystemRoot\system32\DRIVERS\mrxsmb20.sys
\??\C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys
\??\C:\Program Files (x86)\LogMeIn\x64\RaInfo.sys
\??\C:\Windows\system32\drivers\LMIRfsDriver.sys
\SystemRoot\system32\drivers\peauth.sys
\SystemRoot\System32\Drivers\secdrv.SYS
\SystemRoot\System32\DRIVERS\srvnet.sys
\SystemRoot\System32\drivers\tcpipreg.sys
\SystemRoot\System32\DRIVERS\srv2.sys
\SystemRoot\System32\DRIVERS\srv.sys
\SystemRoot\system32\DRIVERS\WUDFRd.sys
\SystemRoot\system32\DRIVERS\Trufos.sys
\??\C:\Windows\system32\drivers\mbamchameleon.sys
\??\C:\Windows\system32\drivers\mbamswissarmy.sys
\Windows\System32\ntdll.dll
\Windows\System32\smss.exe
\Windows\System32\apisetschema.dll
\Windows\System32\autochk.exe
\Windows\System32\imagehlp.dll
\Windows\System32\msvcrt.dll
\Windows\System32\psapi.dll
\Windows\System32\lpk.dll
\Windows\System32\advapi32.dll
\Windows\System32\wininet.dll
\Windows\System32\user32.dll
\Windows\System32\iertutil.dll
\Windows\System32\ws2_32.dll
\Windows\System32\oleaut32.dll
\Windows\System32\nsi.dll
\Windows\System32\setupapi.dll
\Windows\System32\Wldap32.dll
\Windows\System32\rpcrt4.dll
\Windows\System32\shlwapi.dll
\Windows\System32\ole32.dll
\Windows\System32\difxapi.dll
\Windows\System32\sechost.dll
\Windows\System32\urlmon.dll
\Windows\System32\comdlg32.dll
\Windows\System32\clbcatq.dll
\Windows\System32\shell32.dll
\Windows\System32\kernel32.dll
\Windows\System32\msctf.dll
\Windows\System32\imm32.dll
\Windows\System32\gdi32.dll
\Windows\System32\usp10.dll
\Windows\System32\normaliz.dll
\Windows\System32\wintrust.dll
\Windows\System32\comctl32.dll
\Windows\System32\cfgmgr32.dll
\Windows\System32\crypt32.dll
\Windows\System32\KernelBase.dll
\Windows\System32\devobj.dll
\Windows\System32\msasn1.dll
\Windows\SysWOW64\normaliz.dll
----------- End -----------
<<<1>>>
Upper Device Name: \Device\Harddisk3\DR3
Upper Device Object: 0xfffffa8006b2d060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000007d\
Lower Device Object: 0xfffffa8006b29060
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
Initialization returned 0x0
Load Function returned 0x0
<<<1>>>
Upper Device Name: \Device\Harddisk2\DR2
Upper Device Object: 0xfffffa8006b2c060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000007c\
Lower Device Object: 0xfffffa8006b29660
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk1\DR1
Upper Device Object: 0xfffffa8006b28060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\0000007b\
Lower Device Object: 0xfffffa8006b29b60
Lower Device Driver Name: \Driver\USBSTOR\
Driver name found: USBSTOR
<<<1>>>
Upper Device Name: \Device\Harddisk0\DR0
Upper Device Object: 0xfffffa8004a12060
Upper Device Driver Name: \Driver\Disk\
Lower Device Name: \Device\00000059\
Lower Device Object: 0xfffffa80048ca930
Lower Device Driver Name: \Driver\amd_sata\
Driver name found: amd_sata
Initialization returned 0x0
Port sub-driver loaded: \??\C:\Windows\System32\drivers\storport.sys (0x0)
Load Function returned 0x0
Downloaded database version: v2013.02.26.03
Initializing...
Done!
<<<2>>>
Device number: 0, partition: 2
Physical Sector Size: 512
Drive: 0, DevicePointer: 0xfffffa8004a12060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8004a12b90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8004a12060, DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa80048f2a20, DeviceName: Unknown, DriverName: \Driver\Sahdad64\
DevicePointer: 0xfffffa80048d1ac0, DeviceName: Unknown, DriverName: \Driver\amd_xata\
DevicePointer: 0xfffffa80048ca930, DeviceName: \Device\00000059\, DriverName: \Driver\amd_sata\
------------ End ----------
Alternate DeviceName: \Device\Harddisk0\DR0\, DriverName: \Driver\Disk\
Upper DeviceData: 0xfffff8a00e0cf7c0, 0xfffffa8004a12060, 0xfffffa80049d5090
Lower DeviceData: 0xfffff8a00ea7d160, 0xfffffa80048ca930, 0xfffffa80046c3090
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Scanning directory: C:\Windows\system32\drivers...
<<<2>>>
Device number: 0, partition: 2
<<<3>>>
Volume: C:
File system type: NTFS
SectorSize = 512, ClusterSize = 4096, MFTRecordSize = 1024, MFTIndexSize = 4096 bytes
Done!
Drive 0
Scanning MBR on drive 0...
Inspecting partition table:
MBR Signature: 55AA
Disk Signature: 2BD2C32A

Partition information:

Partition 0 type is Primary (0x7)
Partition is ACTIVE.
Partition starts at LBA: 2048 Numsec = 204800
Partition file system is NTFS
Partition is bootable

Partition 1 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 206848 Numsec = 1888303104

Partition 2 type is Primary (0x7)
Partition is NOT ACTIVE.
Partition starts at LBA: 1888509952 Numsec = 62914560

Partition 3 type is Other (0x12)
Partition is NOT ACTIVE.
Partition starts at LBA: 1951424512 Numsec = 2098608

Disk Size: 1000204886016 bytes
Sector size: 512 bytes

Scanning physical sectors of unpartitioned space on drive 0 (1-2047-1953505168-1953525168)...
Physical Sector Size: 0
Drive: 1, DevicePointer: 0xfffffa8006b28060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8006b2a570, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8006b28060, DeviceName: \Device\Harddisk1\DR1\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8006b2aa20, DeviceName: Unknown, DriverName: \Driver\Sahdad64\
DevicePointer: 0xfffffa8006b0b6d0, DeviceName: Unknown, DriverName: \Driver\usbfilter\
DevicePointer: 0xfffffa8006b29b60, DeviceName: \Device\0000007b\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 2, DevicePointer: 0xfffffa8006b2c060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8006b13910, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8006b2c060, DeviceName: \Device\Harddisk2\DR2\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8006b2ba20, DeviceName: Unknown, DriverName: \Driver\Sahdad64\
DevicePointer: 0xfffffa8006b27bf0, DeviceName: Unknown, DriverName: \Driver\usbfilter\
DevicePointer: 0xfffffa8006b29660, DeviceName: \Device\0000007c\, DriverName: \Driver\USBSTOR\
------------ End ----------
Physical Sector Size: 0
Drive: 3, DevicePointer: 0xfffffa8006b2d060, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
--------- Disk Stack ------
DevicePointer: 0xfffffa8006b2db90, DeviceName: Unknown, DriverName: \Driver\partmgr\
DevicePointer: 0xfffffa8006b2d060, DeviceName: \Device\Harddisk3\DR3\, DriverName: \Driver\Disk\
DevicePointer: 0xfffffa8006b2b040, DeviceName: Unknown, DriverName: \Driver\Sahdad64\
DevicePointer: 0xfffffa8006af9bf0, DeviceName: Unknown, DriverName: \Driver\usbfilter\
DevicePointer: 0xfffffa8006b29060, DeviceName: \Device\0000007d\, DriverName: \Driver\USBSTOR\
------------ End ----------
Done!
Performing system, memory and registry scan...
Done!
Scan finished
=======================================

Thank you.
Await your further advices

 

After Combofix LOG

ComboFix 13-02-26.01 - Peter 26/02/2013 22:14:45.1.4 - x64
Microsoft Windows 7 Home Premium 6.1.7601.1.1252.353.1033.18.4095.2611 [GMT 1:00]
Running from: c:\users\Peter\Desktop\ComboFix.exe
AV: BullGuard Antivirus *Disabled/Outdated* {504FFF66-3028-EB7E-2E60-62B19ADD791C}
SP: BullGuard Antispyware *Disabled/Outdated* {EB2E1E82-1612-E4F0-14D0-59C3E15A33A1}
SP: Windows Defender *Disabled/Updated* {D68DDC3A-831F-4fae-9E44-DA132C1ACF46}
.
.
((((((((((((((((((((((((((((((((((((((( Other Deletions )))))))))))))))))))))))))))))))))))))))))))))))))
.
.
C:\prefs.js
c:\program files (x86)\Downloaded Installers
c:\program files (x86)\Downloaded Installers\{B87534F6-E2C5-45F0-A692-E02B8AF47332}\setup.msi
c:\programdata\8100B1E2A9.sys
c:\programdata\DB0A272407.sys
c:\users\Peter\Documents\Readiris.DUS
c:\windows\DXM3CE0.tmp
c:\windows\SysWow64\SET7AB0.tmp
c:\windows\SysWow64\twain.dll
.
.
((((((((((((((((((((((((( Files Created from 2013-01-26 to 2013-02-26 )))))))))))))))))))))))))))))))
.
.
2013-02-26 21:25 . 2013-02-26 21:25 -------- d-----w- c:\users\Default\AppData\Local\temp
2013-02-26 21:25 . 2013-02-26 21:25 -------- d-----w- c:\users\Fran\AppData\Local\temp
2013-02-25 18:57 . 2013-02-25 18:57 -------- d-----w- c:\users\Peter\AppData\Roaming\Panda Security
2013-02-25 18:57 . 2013-02-25 18:57 -------- d-----w- c:\users\Peter\AppData\Roaming\blekko
2013-02-25 18:56 . 2013-02-25 18:56 -------- d-----w- c:\programdata\Panda Security
2013-02-25 18:31 . 2005-06-15 02:00 102400 ----a-w- c:\windows\SysWow64\tsccvid.dll
2013-02-25 18:31 . 2013-02-25 18:34 -------- d-----w- c:\program files (x86)\Split Text Files Into Multiple Files Software
2013-02-25 16:01 . 2013-02-25 16:01 -------- d-----w- c:\users\Peter\AppData\Roaming\Malwarebytes
2013-02-25 16:01 . 2013-02-25 16:01 -------- d-----w- c:\programdata\Malwarebytes
2013-02-25 16:01 . 2013-02-25 16:01 -------- d-----w- c:\program files (x86)\Malwarebytes' Anti-Malware
2013-02-25 16:01 . 2012-12-14 15:49 24176 ----a-w- c:\windows\system32\drivers\mbam.sys
2013-02-25 15:59 . 2013-02-25 15:59 -------- d-----w- c:\users\Peter\AppData\Local\Programs
2013-02-25 11:41 . 2013-02-25 11:51 -------- d-----w- c:\program files\Speccy
2013-02-25 11:37 . 2013-02-25 11:37 4812216 ----a-w- C:\spsetup120.exe
2013-02-21 15:56 . 2007-07-05 12:20 28672 ----a-w- c:\windows\SysWow64\MFC_InstDrvDLL.dll
2013-02-21 15:56 . 2013-02-21 15:56 -------- d-----w- c:\program files (x86)\AVEO UVC Like Driver
2013-02-21 15:56 . 2010-09-06 15:26 265728 ----a-w- c:\windows\system32\drivers\AVEOdcnt.sys
2013-02-21 15:56 . 2008-05-23 14:16 36864 ----a-w- c:\windows\SysWow64\AVEOcamintfc.ax
2013-02-21 15:56 . 2005-01-21 09:42 57344 ----a-w- c:\windows\SysWow64\sx_cam_i420.dll
2013-02-21 15:22 . 2013-02-21 20:41 -------- d-----w- c:\users\Peter\AppData\Roaming\Skype
2013-02-21 15:22 . 2013-02-21 15:22 -------- d-----w- c:\program files (x86)\Common Files\Skype
2013-02-21 15:22 . 2013-02-21 15:22 -------- d-----r- c:\program files (x86)\Skype
2013-02-21 15:22 . 2013-02-21 15:22 -------- d-----w- c:\programdata\Skype
2013-02-21 15:14 . 2013-02-21 15:54 -------- d-----w- C:\temp
2013-02-21 15:13 . 2013-02-21 15:16 -------- d-----w- c:\users\Peter\.yawcam
2013-02-21 15:12 . 2013-02-21 16:25 -------- d-----w- c:\program files (x86)\Yawcam
2013-02-12 18:57 . 2012-12-20 13:55 12295168 ----a-w- c:\windows\system32\ieframe.dll
2013-02-11 21:23 . 2013-02-11 21:23 -------- d-----w- C:\perflogs
2013-02-06 10:52 . 2013-02-06 10:52 95648 ----a-w- c:\windows\SysWow64\WindowsAccessBridge-32.dll
2013-02-04 21:18 . 2009-06-30 09:37 33800 ----a-w- c:\windows\system32\drivers\pavboot64.sys
2013-02-03 16:52 . 2012-05-21 17:53 694416 ----a-w- c:\windows\system32\drivers\RTL8192su.sys
2013-02-03 16:52 . 2012-12-26 17:26 805088 ----a-w- c:\windows\system32\drivers\Rt64win7.sys
2013-02-03 16:52 . 2012-12-26 17:26 74344 ----a-w- c:\windows\system32\RtNicProp64.dll
2013-02-01 10:31 . 2013-02-01 10:31 -------- d-----w- c:\program files (x86)\Common Files\Java
2013-01-31 20:05 . 2013-01-31 20:05 -------- d-----w- c:\users\Fran\AppData\Roaming\Fighters
2013-01-31 18:13 . 2013-01-31 18:13 -------- d-----w- c:\program files\DIFX
2013-01-31 17:40 . 2013-01-31 17:42 -------- d-----w- c:\programdata\BSD
2013-01-31 17:39 . 2013-01-31 17:40 -------- d-----w- c:\users\Peter\AppData\Roaming\Fighters
2013-01-31 17:39 . 2013-01-31 17:39 -------- d-----w- c:\program files (x86)\Fighters
2013-01-31 17:37 . 2013-01-31 17:39 -------- d-----w- c:\programdata\Fighters
.
.
.
(((((((((((((((((((((((((((((((((((((((( Find3M Report ))))))))))))))))))))))))))))))))))))))))))))))))))))
.
2013-02-17 21:02 . 2012-11-16 12:03 691568 ----a-w- c:\windows\SysWow64\FlashPlayerApp.exe
2013-02-17 21:02 . 2011-05-15 18:24 71024 ----a-w- c:\windows\SysWow64\FlashPlayerCPLApp.cpl
2013-02-12 19:02 . 2010-07-07 15:49 70004024 ----a-w- c:\windows\system32\MRT.exe
2013-02-06 10:52 . 2012-12-05 19:00 861088 ----a-w- c:\windows\SysWow64\npdeployJava1.dll
2013-02-06 10:52 . 2010-07-07 16:34 782240 ----a-w- c:\windows\SysWow64\deployJava1.dll
2013-01-23 06:12 . 2013-01-23 06:12 9584 ----a-w- c:\windows\SysWow64\ractrlkeyhook.dll
2013-01-04 04:43 . 2013-02-12 18:56 44032 ----a-w- c:\windows\apppatch\acwow64.dll
2012-12-26 17:26 . 2010-11-10 15:53 107552 ----a-w- c:\windows\system32\RTNUninst64.dll
2012-12-16 17:11 . 2012-12-20 19:36 46080 ----a-w- c:\windows\system32\atmlib.dll
2012-12-16 14:45 . 2012-12-20 19:36 367616 ----a-w- c:\windows\system32\atmfd.dll
2012-12-16 14:13 . 2012-12-20 19:36 295424 ----a-w- c:\windows\SysWow64\atmfd.dll
2012-12-16 14:13 . 2012-12-20 19:36 34304 ----a-w- c:\windows\SysWow64\atmlib.dll
2012-12-07 13:20 . 2013-01-08 19:08 441856 ----a-w- c:\windows\system32\Wpc.dll
2012-12-07 13:15 . 2013-01-08 19:08 2746368 ----a-w- c:\windows\system32\gameux.dll
2012-12-07 12:26 . 2013-01-08 19:08 308736 ----a-w- c:\windows\SysWow64\Wpc.dll
2012-12-07 12:20 . 2013-01-08 19:08 2576384 ----a-w- c:\windows\SysWow64\gameux.dll
2012-12-07 11:20 . 2013-01-08 19:08 30720 ----a-w- c:\windows\system32\usk.rs
2012-12-07 11:20 . 2013-01-08 19:08 43520 ----a-w- c:\windows\system32\csrr.rs
2012-12-07 11:20 . 2013-01-08 19:08 23552 ----a-w- c:\windows\system32\oflc.rs
2012-12-07 11:20 . 2013-01-08 19:08 45568 ----a-w- c:\windows\system32\oflc-nz.rs
2012-12-07 11:20 . 2013-01-08 19:08 44544 ----a-w- c:\windows\system32\pegibbfc.rs
2012-12-07 11:20 . 2013-01-08 19:08 20480 ----a-w- c:\windows\system32\pegi-fi.rs
2012-12-07 11:20 . 2013-01-08 19:08 20480 ----a-w- c:\windows\system32\pegi-pt.rs
2012-12-07 11:19 . 2013-01-08 19:08 20480 ----a-w- c:\windows\system32\pegi.rs
2012-12-07 11:19 . 2013-01-08 19:08 46592 ----a-w- c:\windows\system32\fpb.rs
2012-12-07 11:19 . 2013-01-08 19:08 40960 ----a-w- c:\windows\system32\cob-au.rs
2012-12-07 11:19 . 2013-01-08 19:08 21504 ----a-w- c:\windows\system32\grb.rs
2012-12-07 11:19 . 2013-01-08 19:08 15360 ----a-w- c:\windows\system32\djctq.rs
2012-12-07 11:19 . 2013-01-08 19:08 55296 ----a-w- c:\windows\system32\cero.rs
2012-12-07 11:19 . 2013-01-08 19:08 51712 ----a-w- c:\windows\system32\esrb.rs
2012-12-07 10:46 . 2013-01-08 19:08 43520 ----a-w- c:\windows\SysWow64\csrr.rs
2012-12-07 10:46 . 2013-01-08 19:08 30720 ----a-w- c:\windows\SysWow64\usk.rs
2012-12-07 10:46 . 2013-01-08 19:08 45568 ----a-w- c:\windows\SysWow64\oflc-nz.rs
2012-12-07 10:46 . 2013-01-08 19:08 44544 ----a-w- c:\windows\SysWow64\pegibbfc.rs
2012-12-07 10:46 . 2013-01-08 19:08 20480 ----a-w- c:\windows\SysWow64\pegi-pt.rs
2012-12-07 10:46 . 2013-01-08 19:08 23552 ----a-w- c:\windows\SysWow64\oflc.rs
2012-12-07 10:46 . 2013-01-08 19:08 20480 ----a-w- c:\windows\SysWow64\pegi-fi.rs
2012-12-07 10:46 . 2013-01-08 19:08 46592 ----a-w- c:\windows\SysWow64\fpb.rs
2012-12-07 10:46 . 2013-01-08 19:08 20480 ----a-w- c:\windows\SysWow64\pegi.rs
2012-12-07 10:46 . 2013-01-08 19:08 21504 ----a-w- c:\windows\SysWow64\grb.rs
2012-12-07 10:46 . 2013-01-08 19:08 40960 ----a-w- c:\windows\SysWow64\cob-au.rs
2012-12-07 10:46 . 2013-01-08 19:08 15360 ----a-w- c:\windows\SysWow64\djctq.rs
2012-12-07 10:46 . 2013-01-08 19:08 55296 ----a-w- c:\windows\SysWow64\cero.rs
2012-12-07 10:46 . 2013-01-08 19:08 51712 ----a-w- c:\windows\SysWow64\esrb.rs
2012-11-30 05:45 . 2013-01-08 19:07 362496 ----a-w- c:\windows\system32\wow64win.dll
2012-11-30 05:45 . 2013-01-08 19:07 243200 ----a-w- c:\windows\system32\wow64.dll
2012-11-30 05:45 . 2013-01-08 19:07 13312 ----a-w- c:\windows\system32\wow64cpu.dll
2012-11-30 05:43 . 2013-01-08 19:07 16384 ----a-w- c:\windows\system32\ntvdm64.dll
2012-11-30 05:41 . 2013-01-08 19:07 424448 ----a-w- c:\windows\system32\KernelBase.dll
2012-11-30 05:41 . 2013-01-08 19:07 1161216 ----a-w- c:\windows\system32\kernel32.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-string-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 6144 ---ha-w- c:\windows\system32\api-ms-win-security-base-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-xstate-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-util-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4608 ---ha-w- c:\windows\system32\api-ms-win-core-threadpool-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4608 ---ha-w- c:\windows\system32\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\system32\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\system32\api-ms-win-core-synch-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-misc-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-profile-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 5120 ---ha-w- c:\windows\system32\api-ms-win-core-file-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-delayload-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-memory-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-io-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\system32\api-ms-win-core-heap-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-handle-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-fibers-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-debug-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-datetime-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\system32\api-ms-win-core-localization-l1-1-0.dll
2012-11-30 05:38 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\system32\api-ms-win-core-console-l1-1-0.dll
2012-11-30 04:53 . 2013-01-08 19:07 274944 ----a-w- c:\windows\SysWow64\KernelBase.dll
2012-11-30 04:45 . 2013-01-08 19:07 4608 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processthreads-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-sysinfo-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-synch-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-misc-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localregistry-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-processenvironment-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-namedpipe-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-memory-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-libraryloader-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-interlocked-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-string-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-profile-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-io-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3584 ---ha-w- c:\windows\SysWow64\api-ms-win-core-heap-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-rtlsupport-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 4096 ---ha-w- c:\windows\SysWow64\api-ms-win-core-localization-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 5120 ---ha-w- c:\windows\SysWow64\api-ms-win-core-file-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-errorhandling-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-delayload-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-handle-l1-1-0.dll
2012-11-30 04:45 . 2013-01-08 19:07 3072 ---ha-w- c:\windows\SysWow64\api-ms-win-core-fibers-l1-1-0.dll
.
.
((((((((((((((((((((((((((((((((((((( Reg Loading Points ))))))))))))))))))))))))))))))))))))))))))))))))))
.
.
*Note* empty entries & legit default entries are not shown
REGEDIT4
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Wow6432Node\Microsoft\Windows\CurrentVersion\Run]
"NUSB3MON "= "c:\program files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe" [2010-11-17 113288]
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\policies\system]
"ConsentPromptBehaviorAdmin "= 5 (0x5)
"ConsentPromptBehaviorUser "= 3 (0x3)
"EnableUIADesktopToggle "= 0 (0x0)
"EnableLinkedConnections "= 1 (0x1)
"SoftwareSASGeneration "= 3 (0x3)
.
[HKEY_CURRENT_USER\software\microsoft\windows\currentversion\policies\explorer]
"NoThumbnailCache "= 1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\windows]
"LoadAppInit_DLLs "=1 (0x1)
.
[HKEY_LOCAL_MACHINE\software\wow6432node\microsoft\windows nt\currentversion\drivers32]
"aux "=wdmaud.drv
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsMain]
@= "Service "
.
[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Control\SafeBoot\Minimal\BsScanner]
@= "Service "
.
R2 clr_optimization_v4.0.30319_64;Microsoft .NET Framework NGEN v4.0.30319_X64;c:\windows\Microsoft.NET\Framework64\v4.0.30319\mscorsvw.exe [2010-03-18 138576]
R2 HipServ;HipServ for Windows;c:\program files\Roxio\Roxio Streamer\srvstart\srvstart.exe [2010-05-25 268288]
R2 MBAMService;MBAMService;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe [2012-12-14 682344]
R2 SkypeUpdate;Skype Updater;c:\program files (x86)\Skype\Updater\Updater.exe [2013-02-07 161384]
R3 BOT4Service;BOT4Service;c:\program files (x86)\Roxio\BackOnTrack\App\BService.exe [2010-09-13 39408]
R3 CrossLoopService;CrossLoop Service;c:\users\Peter\AppData\Local\CrossLoop\CrossLoopService.exe [2012-01-06 569072]
R3 D-Vitec;D-Vitec Driver;c:\windows\system32\DRIVERS\dvitdcnt.sys [2012-07-26 307968]
R3 RdpVideoMiniport;Remote Desktop Video Miniport Driver;c:\windows\system32\drivers\rdpvideominiport.sys [2012-08-23 19456]
R3 TsUsbFlt;TsUsbFlt;c:\windows\system32\drivers\tsusbflt.sys [2012-08-23 57856]
R3 tvnserver;TightVNC Server;c:\users\Peter\AppData\Local\CrossLoop\tvnserver.exe [2010-07-21 814080]
R3 VBoxNetAdp;VirtualBox Host-Only Ethernet Adapter;c:\windows\system32\DRIVERS\VBoxNetAdp.sys [2011-12-19 146736]
R3 VBoxNetFlt;VirtualBox Bridged Networking Service; [x]
R3 WatAdminSvc;Windows Activation Technologies Service;c:\windows\system32\Wat\WatAdminSvc.exe [2010-11-10 1255736]
R4 9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269;Roxio SAIB Service;c:\program files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe [2009-06-02 457200]
R4 BsBackup;BullGuard backup service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]
R4 NAUpdate;Nero Update;c:\program files (x86)\Nero\Update\NASvc.exe [2011-11-04 687400]
R4 RoxMediaDB13;RoxMediaDB13;c:\program files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxMediaDB13.exe [2010-07-16 1099248]
R4 RoxWatch12;Roxio Hard Drive Watcher 12;c:\program files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatch13.exe [2010-07-16 354288]
R4 wlcrasvc;Windows Live Mesh remote connections service;c:\program files\Windows Live\Mesh\wlcrasvc.exe [2010-09-23 57184]
S0 amd_sata;amd_sata;c:\windows\system32\DRIVERS\amd_sata.sys [2012-04-10 82560]
S0 amd_xata;amd_xata;c:\windows\system32\DRIVERS\amd_xata.sys [2012-04-10 42624]
S0 pavboot;pavboot;c:\windows\system32\drivers\pavboot64.sys [2009-06-30 33800]
S0 PxHlpa64;PxHlpa64;c:\windows\System32\Drivers\PxHlpa64.sys [2010-03-19 55856]
S0 Sahdad64;HDD Filter Driver;c:\windows\System32\Drivers\Sahdad64.sys [2009-06-01 27120]
S0 Saibad64;Volume Filter Driver;c:\windows\System32\Drivers\Saibad64.sys [2009-06-01 19952]
S1 BdSpy;BdSpy;c:\windows\system32\DRIVERS\BdSpy.sys [2011-04-11 66272]
S1 NovaShieldFilterDriver;NovaShieldFilterDriver;c:\windows\system32\DRIVERS\NSKernel.sys [2012-03-24 256072]
S1 NovaShieldTDIDriver;NovaShieldTDIDriver;c:\windows\system32\DRIVERS\NSNetmon.sys [2012-03-24 25160]
S1 SaibVdAd64;Virtual Disk Driver;c:\windows\system32\Drivers\SaibVdAd64.sys [2009-06-01 27632]
S1 VBoxDrv;VirtualBox Service;c:\windows\system32\DRIVERS\VBoxDrv.sys [2011-12-19 224048]
S2 AMD External Events Utility;AMD External Events Utility;c:\windows\system32\atiesrxx.exe [2012-09-28 239616]
S2 AMD FUEL Service;AMD FUEL Service;c:\program files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe [2012-09-28 361984]
S2 AODDriver4.2;AODDriver4.2;c:\program files\ATI Technologies\ATI.ACE\Fuel\amd64\AODDriver2.sys [2012-04-09 57472]
S2 BsBhvScan;BullGuard behavioural detection service;c:\program files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe [2012-08-27 368480]
S2 BsFileScan;BullGuard on-access service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]
S2 BsMailProxy;BullGuard e-mail monitoring service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]
S2 BsMain;BullGuard main service;c:\windows\System32\SvcHost.exe [2009-07-14 27136]
S2 BsScanner;BullGuard scanning service;c:\program files\BullGuard Ltd\BullGuard\BullGuardScanner.exe [2012-08-27 201056]
S2 BsUpdate;BullGuard update service;c:\program files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe [2012-08-27 379744]
S2 HipServUsbDetection;USB detection service for HipServ;c:\program files\Roxio\Roxio Streamer\usb_detection.exe [2010-06-22 19968]
S2 LMIGuardianSvc;LMIGuardianSvc;c:\program files (x86)\LogMeIn\x64\LMIGuardianSvc.exe [2012-10-30 375728]
S2 LMIInfo;LogMeIn Kernel Information Provider;c:\program files (x86)\LogMeIn\x64\RaInfo.sys [2011-01-11 15928]
S2 MBAMScheduler;MBAMScheduler;c:\program files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe [2012-12-14 398184]
S2 PCToolsSSDMonitorSvc;PC Tools Startup and Shutdown Monitor service;c:\program files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe [2012-08-21 794272]
S2 Realtek11nSU;Realtek11nSU;c:\program files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe [2010-04-16 36864]
S2 Suite Service;Suite Service;c:\program files (x86)\Fighters\FighterSuiteService.exe [2012-11-12 1270376]
S3 AtiHDAudioService;AMD Function Driver for HD Audio Service;c:\windows\system32\drivers\AtihdW76.sys [2012-05-14 96896]
S3 AVEO;USB2.0 PC Camera;c:\windows\system32\DRIVERS\AVEOdcnt.sys [2010-09-06 265728]
S3 MBAMProtector;MBAMProtector;c:\windows\system32\drivers\mbam.sys [2012-12-14 24176]
S3 nusb3hub;Renesas Electronics USB 3.0 Hub Driver;c:\windows\system32\DRIVERS\nusb3hub.sys [2010-11-19 80384]
S3 nusb3xhc;Renesas Electronics USB 3.0 Host Controller Driver;c:\windows\system32\DRIVERS\nusb3xhc.sys [2010-11-19 181248]
S3 RTL8167;Realtek 8167 NT Driver;c:\windows\system32\DRIVERS\Rt64win7.sys [2012-12-26 805088]
S3 RTL8192su;Realtek RTL8192SU Wireless LAN 802.11n USB 2.0 Network Adapter;c:\windows\system32\DRIVERS\RTL8192su.sys [2012-05-21 694416]
S3 usbfilter;AMD USB Filter Driver;c:\windows\system32\DRIVERS\usbfilter.sys [2010-06-14 38528]
.
.
Contents of the 'Scheduled Tasks' folder
.
2013-02-26 c:\windows\Tasks\Adobe Flash Player Updater.job
- c:\windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe [2012-11-16 21:02]
.
2012-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineCore.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-12 17:29]
.
2012-09-22 c:\windows\Tasks\GoogleUpdateTaskMachineUA.job
- c:\program files (x86)\Google\Update\GoogleUpdate.exe [2011-02-12 17:29]
.
2013-02-26 c:\windows\Tasks\RMAutoUpdate.job
- c:\program files (x86)\PC Tools\PC Tools Registry Mechanic\SULauncher.exe [2012-12-21 13:44]
.
2013-02-25 c:\windows\Tasks\RMSchedule.job
- c:\program files (x86)\PC Tools\PC Tools Registry Mechanic\RegMech.exe [2012-12-21 13:43]
.
.
--------- X64 Entries -----------
.
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\mozy2]
@= "{747E722C-CB46-4a9d-BDFE-192AAD5099B1} "
[HKEY_CLASSES_ROOT\CLSID\{747E722C-CB46-4a9d-BDFE-192AAD5099B1}]
2012-09-18 13:51 6306192 ----a-w- c:\program files\MozyHome\mozyshell.dll
.
[HKEY_LOCAL_MACHINE\software\microsoft\windows\currentversion\explorer\shelliconoverlayidentifiers\mozy3]
@= "{EE6F5A00-7898-40f7-AB77-51FF9D6DEB20} "
[HKEY_CLASSES_ROOT\CLSID\{EE6F5A00-7898-40f7-AB77-51FF9D6DEB20}]
2012-09-18 13:51 6306192 ----a-w- c:\program files\MozyHome\mozyshell.dll
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Run]
"BullGuard "= "c:\program files\bullguard ltd\bullguard\BullGuard.exe" [2012-11-28 1810272]
"LogMeIn GUI "= "c:\program files (x86)\LogMeIn\x64\LogMeInSystray.exe" [2011-01-11 57928]
.
------- Supplementary Scan -------
.
uLocal Page = c:\windows\system32\blank.htm
uStart Page = hxxp://pandasecurity.mystart.com/?source=5b97eeb3&tbp=homepage&toolbarid=pandasecuritytb&v=4_0&u=FE93167A313C8884210127512BB406F8
mLocal Page = c:\windows\SysWOW64\blank.htm
LSP: c:\windows\system32\BGLsp.dll
TCP: DhcpNameServer = 192.167.1.1
.
- - - - ORPHANS REMOVED - - - -
.
Wow6432Node-HKLM-Run-<NO NAME> - (no file)
.
.
.
--------------------- LOCKED REGISTRY KEYS ---------------------
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.htm\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "ChromeHTML "
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.html\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "ChromeHTML "
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.shtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "ChromeHTML "
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xht\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "ChromeHTML "
.
[HKEY_USERS\.Default\Software\Microsoft\Windows\CurrentVersion\Explorer\FileExts\.xhtml\UserChoice]
@Denied: (2) (LocalSystem)
"Progid "= "ChromeHTML "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@= "FlashBroker "
"LocalizedString "= "@c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_168_ActiveX.exe,-101 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled "=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@= "c:\\Windows\\system32\\Macromed\\Flash\\FlashUtil64_11_6_602_168_ActiveX.exe "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@= "IFlashBroker5 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@= "{00020424-0000-0000-C000-000000000046} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
"Version "= "1.0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@= "FlashBroker "
"LocalizedString "= "@c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe,-101 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\Elevation]
"Enabled "=dword:00000001
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\LocalServer32]
@= "c:\\Windows\\SysWOW64\\Macromed\\Flash\\FlashUtil32_11_6_602_168_ActiveX.exe "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{73C9DFA0-750D-11E1-B0C4-0800200C9A66}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@= "Shockwave Flash Object "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\InprocServer32]
@= "c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx "
"ThreadingModel "= "Apartment "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\MiscStatus]
@= "0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ProgID]
@= "ShockwaveFlash.ShockwaveFlash.11 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@= "c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\TypeLib]
@= "{D27CDB6B-AE6D-11cf-96B8-444553540000} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\Version]
@= "1.0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB6E-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@= "ShockwaveFlash.ShockwaveFlash "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}]
@Denied: (A 2) (Everyone)
@= "Macromedia Flash Factory Object "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\InprocServer32]
@= "c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx "
"ThreadingModel "= "Apartment "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ProgID]
@= "FlashFactory.FlashFactory.1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\ToolboxBitmap32]
@= "c:\\Windows\\SysWOW64\\Macromed\\Flash\\Flash32_11_6_602_168.ocx, 1 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\TypeLib]
@= "{D27CDB6B-AE6D-11cf-96B8-444553540000} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\Version]
@= "1.0 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\CLSID\{D27CDB70-AE6D-11cf-96B8-444553540000}\VersionIndependentProgID]
@= "FlashFactory.FlashFactory "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}]
@Denied: (A 2) (Everyone)
@= "IFlashBroker5 "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\ProxyStubClsid32]
@= "{00020424-0000-0000-C000-000000000046} "
.
[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\Wow6432Node\Interface\{6AE38AE0-750C-11E1-B0C4-0800200C9A66}\TypeLib]
@= "{FAB3E735-69C7-453B-A446-B6823C6DF1C9} "
"Version "= "1.0 "
.
[HKEY_LOCAL_MACHINE\SYSTEM\ControlSet001\Control\PCW\Security]
@Denied: (Full) (Everyone)
.
Completion time: 2013-02-26 22:41:21
ComboFix-quarantined-files.txt 2013-02-26 21:41
.
Pre-Run: 771,951,857,664 bytes free
Post-Run: 772,025,298,944 bytes free
.
- - End Of File - - A981C07C96CF0CC58C06F56A8937010F

 

More log files

OTL logfile created on: 2/27/2013 12:12:02 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Peter\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 2.23 Gb Available Physical Memory | 55.65% Memory free
8.00 Gb Paging File | 6.19 Gb Available in Paging File | 77.41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 900.41 Gb Total Space | 718.46 Gb Free Space | 79.79% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 10.37 Gb Free Space | 34.58% Space Free | Partition Type: NTFS

Computer Name: MEDION1-PC | User Name: Peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Processes (SafeList) ==========

PRC - [2013/02/27 00:11:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Peter\Desktop\OTL.exe
PRC - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe
PRC - [2012/08/21 14:43:58 | 000,794,272 | ---- | M] (PC Tools) -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe
PRC - [2012/08/13 23:11:21 | 000,156,512 | ---- | M] (BullGuard Ltd.) -- C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\LittleHook.exe
PRC - [2011/08/08 14:43:02 | 001,953,792 | ---- | M] (Realtek Semiconductor Corp.) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtWLan.exe
PRC - [2010/11/17 09:53:00 | 000,113,288 | ---- | M] (Renesas Electronics Corporation) -- C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe
PRC - [2010/04/16 15:10:58 | 000,036,864 | ---- | M] (Realtek) -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe
PRC - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe


========== Modules (No Company Name) ==========

MOD - [2012/08/27 20:47:28 | 000,482,656 | ---- | M] () -- C:\Program Files\BullGuard Ltd\BullGuard\Files32\SQLite.dll


========== Services (SafeList) ==========

SRV:64bit: - [2012/11/28 14:21:27 | 000,515,424 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BsMailProxy\BsMailProxy.dll -- (BsMailProxy)
SRV:64bit: - [2012/11/28 14:21:22 | 000,285,536 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BsMain.dll -- (BsMain)
SRV:64bit: - [2012/09/28 15:43:40 | 000,361,984 | ---- | M] (Advanced Micro Devices, Inc.) [Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\Fuel.Service.exe -- (AMD FUEL Service)
SRV:64bit: - [2012/09/28 02:38:16 | 000,239,616 | ---- | M] (AMD) [Auto | Running] -- C:\Windows\SysNative\atiesrxx.exe -- (AMD External Events Utility)
SRV:64bit: - [2012/08/27 20:47:29 | 000,368,480 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardBhvScanner.exe -- (BsBhvScan)
SRV:64bit: - [2012/08/27 20:47:28 | 000,274,784 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BsFileScan.dll -- (BsFileScan)
SRV:64bit: - [2012/08/27 20:47:24 | 000,201,056 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardScanner.exe -- (BsScanner)
SRV:64bit: - [2012/08/27 20:44:13 | 000,379,744 | ---- | M] (BullGuard Ltd.) [Auto | Running] -- C:\Program Files\BullGuard Ltd\BullGuard\BullGuardUpdate.exe -- (BsUpdate)
SRV:64bit: - [2012/06/19 07:28:09 | 000,071,520 | ---- | M] (BullGuard Ltd.) [Disabled | Stopped] -- C:\Program Files\BullGuard Ltd\BullGuard\BsBackup.dll -- (BsBackup)
SRV:64bit: - [2010/09/23 02:10:10 | 000,057,184 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Program Files\Windows Live\Mesh\wlcrasvc.exe -- (wlcrasvc)
SRV:64bit: - [2010/06/22 10:27:10 | 000,019,968 | ---- | M] () [Auto | Running] -- C:\Program Files\Roxio\Roxio Streamer\usb_detection.exe -- (HipServUsbDetection)
SRV:64bit: - [2010/05/25 13:09:50 | 000,268,288 | ---- | M] (Nick Rozanski (Nick@Rozanski.com)) [Auto | Stopped] -- C:\Program Files\Roxio\Roxio Streamer\srvstart\srvstart.exe -- (HipServ)
SRV:64bit: - [2009/07/14 02:41:27 | 001,011,712 | ---- | M] (Microsoft Corporation) [On_Demand | Stopped] -- C:\Program Files\Windows Defender\MpSvc.dll -- (WinDefend)
SRV - [2013/02/17 22:02:31 | 000,251,248 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Windows\SysWOW64\Macromed\Flash\FlashPlayerUpdateService.exe -- (AdobeFlashPlayerUpdateSvc)
SRV - [2013/02/07 13:24:12 | 000,161,384 | R--- | M] (Skype Technologies) [Auto | Stopped] -- C:\Program Files (x86)\Skype\Updater\Updater.exe -- (SkypeUpdate)
SRV - [2012/12/18 20:08:28 | 000,065,192 | ---- | M] (Adobe Systems Incorporated) [On_Demand | Stopped] -- C:\Program Files (x86)\Common Files\Adobe\ARM\1.0\armsvc.exe -- (AdobeARMservice)
SRV - [2012/12/14 16:49:28 | 000,682,344 | ---- | M] (Malwarebytes Corporation) [Auto | Stopped] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamservice.exe -- (MBAMService)
SRV - [2012/12/14 16:49:28 | 000,398,184 | ---- | M] (Malwarebytes Corporation) [Auto | Running] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware\mbamscheduler.exe -- (MBAMScheduler)
SRV - [2012/10/30 19:06:19 | 000,147,888 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\ramaint.exe -- (LMIMaint)
SRV - [2012/10/30 19:05:59 | 000,375,728 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LMIGuardianSvc.exe -- (LMIGuardianSvc)
SRV - [2012/08/21 14:43:58 | 000,794,272 | ---- | M] (PC Tools) [Auto | Running] -- C:\Program Files (x86)\Common Files\PC Tools\sMonitor\StartManSvc.exe -- (PCToolsSSDMonitorSvc)
SRV - [2012/01/06 07:35:22 | 000,569,072 | ---- | M] (CrossLoop) [On_Demand | Stopped] -- C:\Users\Peter\AppData\Local\CrossLoop\CrossLoopService.exe -- (CrossLoopService)
SRV - [2011/11/04 14:40:06 | 000,687,400 | ---- | M] (Nero AG) [Disabled | Stopped] -- C:\Program Files (x86)\Nero\Update\NASvc.exe -- (NAUpdate)
SRV - [2011/01/11 18:04:04 | 000,407,424 | ---- | M] (LogMeIn, Inc.) [Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\LogMeIn.exe -- (LogMeIn)
SRV - [2010/09/13 18:02:00 | 000,039,408 | ---- | M] () [On_Demand | Stopped] -- C:\Program Files (x86)\Roxio\BackOnTrack\App\BService.exe -- (BOT4Service)
SRV - [2010/07/21 06:50:26 | 000,814,080 | ---- | M] (GlavSoft LLC.) [On_Demand | Stopped] -- C:\Users\Peter\AppData\Local\CrossLoop\tvnserver.exe -- (tvnserver)
SRV - [2010/07/16 05:48:26 | 000,354,288 | ---- | M] (Sonic Solutions) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxWatch13.exe -- (RoxWatch12)
SRV - [2010/07/16 05:48:04 | 001,099,248 | ---- | M] (Sonic Solutions) [Disabled | Stopped] -- C:\Program Files (x86)\Common Files\Roxio Shared\13.0\SharedCOM\RoxMediaDB13.exe -- (RoxMediaDB13)
SRV - [2010/04/16 15:10:58 | 000,036,864 | ---- | M] (Realtek) [Auto | Running] -- C:\Program Files (x86)\Realtek\11n USB Wireless LAN Utility\RtlService.exe -- (Realtek11nSU)
SRV - [2010/03/18 22:16:28 | 000,130,384 | ---- | M] (Microsoft Corporation) [Auto | Stopped] -- C:\Windows\Microsoft.NET\Framework\v4.0.30319\mscorsvw.exe -- (clr_optimization_v4.0.30319_32)
SRV - [2009/06/10 22:23:09 | 000,066,384 | ---- | M] (Microsoft Corporation) [Disabled | Stopped] -- C:\Windows\Microsoft.NET\Framework\v2.0.50727\mscorsvw.exe -- (clr_optimization_v2.0.50727_32)
SRV - [2009/06/02 18:05:58 | 000,457,200 | ---- | M] () [Disabled | Stopped] -- C:\Program Files (x86)\Roxio\BackOnTrack\App\SaibSVC.exe -- (9734BF6A-2DCD-40f0-BAB0-5AAFEEBE1269)
SRV - [2007/07/24 11:15:14 | 000,185,632 | ---- | M] (Protexis Inc.) [Auto | Running] -- c:\Program Files (x86)\Common Files\Protexis\License Service\PsiService_2.exe -- (PSI_SVC_2)


========== Driver Services (SafeList) ==========

DRV:64bit: - [2012/12/26 18:26:12 | 000,805,088 | ---- | M] (Realtek ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\Rt64win7.sys -- (RTL8167)
DRV:64bit: - [2012/12/14 16:49:28 | 000,024,176 | ---- | M] (Malwarebytes Corporation) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\mbam.sys -- (MBAMProtector)
DRV:64bit: - [2012/10/30 19:06:01 | 000,088,008 | ---- | M] (LogMeIn, Inc.) [File_System | Disabled | Stopped] -- C:\Windows\SysNative\LMIRfsClientNP.dll -- (LMIRfsClientNP)
DRV:64bit: - [2012/09/28 03:21:20 | 010,697,216 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmdag.sys -- (amdkmdag)
DRV:64bit: - [2012/09/28 02:12:52 | 000,460,288 | ---- | M] (Advanced Micro Devices, Inc.) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\atikmpag.sys -- (amdkmdap)
DRV:64bit: - [2012/08/23 15:10:20 | 000,019,456 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\rdpvideominiport.sys -- (RdpVideoMiniport)
DRV:64bit: - [2012/08/23 15:07:35 | 000,057,856 | ---- | M] (Microsoft Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\TsUsbFlt.sys -- (TsUsbFlt)
DRV:64bit: - [2012/07/26 07:32:08 | 000,307,968 | ---- | M] (D-vitec) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\dvitdcnt.sys -- (D-Vitec)
DRV:64bit: - [2012/06/04 15:16:36 | 000,067,368 | ---- | M] (Mozy, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\mozy.sys -- (mozyFilter)
DRV:64bit: - [2012/05/21 18:53:16 | 000,694,416 | ---- | M] (Realtek Semiconductor Corporation ) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\RTL8192su.sys -- (RTL8192su)
DRV:64bit: - [2012/05/14 07:12:30 | 000,096,896 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\AtihdW76.sys -- (AtiHDAudioService)
DRV:64bit: - [2012/04/10 07:40:58 | 000,082,560 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_sata.sys -- (amd_sata)
DRV:64bit: - [2012/04/10 07:40:58 | 000,042,624 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amd_xata.sys -- (amd_xata)
DRV:64bit: - [2012/04/09 10:13:58 | 000,057,472 | ---- | M] (Advanced Micro Devices) [Kernel | Auto | Running] -- C:\Program Files\ATI Technologies\ATI.ACE\Fuel\amd64\aoddriver2.sys -- (AODDriver4.2)
DRV:64bit: - [2012/03/24 17:25:59 | 000,025,160 | ---- | M] (NovaShield, Inc.) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\NSNetmon.sys -- (NovaShieldTDIDriver)
DRV:64bit: - [2012/03/24 17:25:51 | 000,256,072 | ---- | M] (NovaShield, Inc.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\NSKernel.sys -- (NovaShieldFilterDriver)
DRV:64bit: - [2012/03/24 17:25:49 | 000,290,376 | ---- | M] (BitDefender S.R.L.) [File_System | On_Demand | Running] -- C:\Windows\SysNative\drivers\Trufos.sys -- (Trufos)
DRV:64bit: - [2012/03/01 07:46:16 | 000,023,408 | ---- | M] (Microsoft Corporation) [Recognizer | Boot | Unknown] -- C:\Windows\SysNative\drivers\fs_rec.sys -- (Fs_Rec)
DRV:64bit: - [2011/12/19 13:45:22 | 000,146,736 | ---- | M] (Oracle Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\VBoxNetAdp.sys -- (VBoxNetAdp)
DRV:64bit: - [2011/04/11 11:30:25 | 000,066,272 | ---- | M] (BullGuard Ltd.) [File_System | System | Running] -- C:\Windows\SysNative\drivers\BdSpy.sys -- (BdSpy)
DRV:64bit: - [2011/03/11 07:41:12 | 000,107,904 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsata.sys -- (amdsata)
DRV:64bit: - [2011/03/11 07:41:12 | 000,027,008 | ---- | M] (Advanced Micro Devices) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\amdxata.sys -- (amdxata)
DRV:64bit: - [2011/01/11 18:04:04 | 000,072,216 | ---- | M] (LogMeIn, Inc.) [File_System | Auto | Running] -- C:\Windows\SysNative\drivers\LMIRfsDriver.sys -- (LMIRfsDriver)
DRV:64bit: - [2011/01/11 18:04:00 | 000,011,552 | ---- | M] (LogMeIn, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lmimirr.sys -- (lmimirr)
DRV:64bit: - [2010/11/20 14:33:35 | 000,078,720 | ---- | M] (Hewlett-Packard Company) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\HpSAMD.sys -- (HpSAMD)
DRV:64bit: - [2010/11/19 10:34:00 | 000,181,248 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3xhc.sys -- (nusb3xhc)
DRV:64bit: - [2010/11/19 10:34:00 | 000,080,384 | ---- | M] (Renesas Electronics Corporation) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\nusb3hub.sys -- (nusb3hub)
DRV:64bit: - [2010/09/06 16:26:36 | 000,265,728 | ---- | M] (AVEO Corp) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\AVEOdcnt.sys -- (AVEO)
DRV:64bit: - [2010/06/17 10:15:36 | 000,016,440 | ---- | M] (Advanced Micro Devices Inc.) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\AtiPcie64.sys -- (AtiPcie)
DRV:64bit: - [2010/06/14 10:41:10 | 000,038,528 | ---- | M] (Advanced Micro Devices) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\usbfilter.sys -- (usbfilter)
DRV:64bit: - [2010/03/19 03:00:00 | 000,055,856 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\PxHlpa64.sys -- (PxHlpa64)
DRV:64bit: - [2009/07/14 02:52:20 | 000,194,128 | ---- | M] (AMD Technologies Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\amdsbs.sys -- (amdsbs)
DRV:64bit: - [2009/07/14 02:48:04 | 000,065,600 | ---- | M] (LSI Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\lsi_sas2.sys -- (LSI_SAS2)
DRV:64bit: - [2009/07/14 02:45:55 | 000,024,656 | ---- | M] (Promise Technology) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\stexstor.sys -- (stexstor)
DRV:64bit: - [2009/06/30 10:37:16 | 000,033,800 | ---- | M] (Panda Security, S.L.) [File_System | Boot | Running] -- C:\Windows\SysNative\drivers\pavboot64.sys -- (pavboot)
DRV:64bit: - [2009/06/10 21:34:33 | 003,286,016 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\evbda.sys -- (ebdrv)
DRV:64bit: - [2009/06/10 21:34:28 | 000,468,480 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\bxvbda.sys -- (b06bdrv)
DRV:64bit: - [2009/06/10 21:34:23 | 000,270,848 | ---- | M] (Broadcom Corporation) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\b57nd60a.sys -- (b57nd60a)
DRV:64bit: - [2009/06/10 21:31:59 | 000,031,232 | ---- | M] (Hauppauge Computer Works, Inc.) [Kernel | On_Demand | Stopped] -- C:\Windows\SysNative\drivers\hcw85cir.sys -- (hcw85cir)
DRV:64bit: - [2009/06/02 00:00:00 | 000,027,632 | ---- | M] (Sonic Solutions) [Kernel | System | Running] -- C:\Windows\SysNative\drivers\SaibVdAd64.sys -- (SaibVdAd64)
DRV:64bit: - [2009/06/02 00:00:00 | 000,027,120 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Sahdad64.sys -- (Sahdad64)
DRV:64bit: - [2009/06/02 00:00:00 | 000,019,952 | ---- | M] (Sonic Solutions) [Kernel | Boot | Running] -- C:\Windows\SysNative\drivers\Saibad64.sys -- (Saibad64)
DRV:64bit: - [2005/09/23 22:18:34 | 000,261,120 | ---- | M] (Pinnacle Systems GmbH) [Kernel | On_Demand | Running] -- C:\Windows\SysNative\drivers\MarvinBus64.sys -- (MarvinBus)
DRV - [2011/01/11 18:04:04 | 000,015,928 | ---- | M] (LogMeIn, Inc.) [Kernel | Auto | Running] -- C:\Program Files (x86)\LogMeIn\x64\rainfo.sys -- (LMIInfo)
DRV - [2009/07/14 02:19:10 | 000,019,008 | ---- | M] (Microsoft Corporation) [File_System | On_Demand | Stopped] -- C:\Windows\SysWOW64\drivers\wimmount.sys -- (WIMMount)


========== Standard Registry (SafeList) ==========


========== Internet Explorer ==========

IE:64bit: - HKLM\..\SearchScopes,DefaultScope =
IE:64bit: - HKLM\..\SearchScopes\{6A1806CD-94D4-4689-BA73-E35EA1EA9990}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7
IE - HKLM\SOFTWARE\Microsoft\Internet Explorer\Main,Local Page = C:\Windows\SysWOW64\blank.htm
IE - HKLM\..\SearchScopes,DefaultScope =


IE - HKU\.DEFAULT\..\SearchScopes,DefaultScope =
IE - HKU\.DEFAULT\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-18\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-18\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0

IE - HKU\S-1-5-19\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-20\..\SearchScopes,DefaultScope =

IE - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Microsoft\Internet Explorer\Main,SearchDefaultBranded = 1
IE - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Microsoft\Internet Explorer\Main,Start Page = http://www.google.com
IE - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\..\SearchScopes,DefaultScope =
IE - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\..\SearchScopes\{A8E11F0B-60AC-45C9-A1A5-2806837696F4}: "URL" = http://www.google.com/search?q={searchTerms}&rls=com.microsoft:{language}:{referrer:source?}&ie={inputEncoding}&oe={outputEncoding}&sourceid=ie7&rlz=1I7MDNA_enDE393FR419
IE - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\Software\Microsoft\Windows\CurrentVersion\Internet Settings: "ProxyEnable" = 0


========== FireFox ==========

FF:64bit: - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\system32\Macromed\Flash\NPSWF64_11_5_502_149.dll File not found
FF:64bit: - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin: C:\Program Files\Java\jre6\bin\new_plugin\npjp2.dll (Sun Microsystems, Inc.)
FF:64bit: - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF:64bit: - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@adobe.com/FlashPlayer: C:\Windows\SysWOW64\Macromed\Flash\NPSWF32_11_5_502_149.dll ()
FF - HKLM\Software\MozillaPlugins\@adobe.com/ShockwavePlayer: C:\Windows\SysWOW64\Adobe\Director\np32dsw_1168638.dll (Adobe Systems, Inc.)
FF - HKLM\Software\MozillaPlugins\@java.com/DTPlugin,version=10.13.2: C:\Windows\SysWOW64\npDeployJava1.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@java.com/JavaPlugin,version=10.13.2: C:\Program Files (x86)\Java\jre7\bin\plugin2\npjp2.dll (Oracle Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/GENUINE: C:\Windows\system32\Wat\npWatWeb.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Microsoft.com/NpCtrl,version=1.0: C:\Program Files (x86)\Microsoft Silverlight\5.1.10411.0\npctrl.dll ( Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3502.0922: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@microsoft.com/WLPG,version=15.4.3508.1109: C:\Program Files (x86)\Windows Live\Photo Gallery\NPWLPG.dll (Microsoft Corporation)
FF - HKLM\Software\MozillaPlugins\@Nero.com/KM: C:\PROGRA~2\COMMON~1\Nero\BROWSE~1\NPBROW~1.DLL (Nero AG)
FF - HKLM\Software\MozillaPlugins\@pandasecurity.com/activescan: C:\Program Files (x86)\Panda Security\ActiveScan 2.0\npwrapper.dll (Panda Security, S.L.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=3: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\@tools.google.com/Google Update;version=9: C:\Program Files (x86)\Google\Update\1.3.21.123\npGoogleUpdate3.dll (Google Inc.)
FF - HKLM\Software\MozillaPlugins\Adobe Reader: C:\Program Files (x86)\Adobe\Reader 11.0\Reader\AIR\nppdf32.dll (Adobe Systems Inc.)

FF - HKEY_LOCAL_MACHINE\software\mozilla\Firefox\Extensions\\antiphishing@bullguard: c:\program files\bullguard ltd\bullguard\Files32\Antiphishing\FF\antiphishing@bullguard\ [2012/04/14 17:40:37 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Thunderbird\Extensions\\{0E810812-F4BB-4309-942A-755587587A5E}: C:\Program Files\BullGuard Ltd\BullGuard\Files32\Spamfilter\TbSpamfilter [2012/06/08 07:22:38 | 000,000,000 | ---D | M]
FF - HKEY_CURRENT_USER\software\mozilla\Thunderbird\Extensions\\{380AE6CB-09B9-4373-B360-D01C2462A6E7}: C:\Program Files\BullGuard Ltd\BullGuard\files32\backup\thunderbirdbkplugin [2012/03/24 17:27:44 | 000,000,000 | ---D | M]


O1 HOSTS File: ([2013/02/26 22:25:29 | 000,000,027 | ---- | M]) - C:\Windows\SysNative\drivers\etc\hosts
O1 - Hosts: 127.0.0.1 localhost
O2 - BHO: (Java(tm) Plug-In SSV Helper) - {761497BB-D6F0-462C-B6EB-D4DAF1D92D43} - C:\Program Files (x86)\Java\jre7\bin\ssv.dll (Oracle Corporation)
O2 - BHO: (Java(tm) Plug-In 2 SSV Helper) - {DBC80044-A445-435b-BC74-9C25C1C588A9} - C:\Program Files (x86)\Java\jre7\bin\jp2ssv.dll (Oracle Corporation)
O3 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\..\Toolbar\WebBrowser: (no name) - {2318C2B1-4965-11D4-9B18-009027A5CD4F} - No CLSID value found.
O3 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\..\Toolbar\WebBrowser: (no name) - {472734EA-242A-422B-ADF8-83D1E48CC825} - No CLSID value found.
O4:64bit: - HKLM..\Run: [BullGuard] c:\program files\bullguard ltd\bullguard\BullGuard.exe (BullGuard Ltd.)
O4:64bit: - HKLM..\Run: [LogMeIn GUI] C:\Program Files (x86)\LogMeIn\x64\LogMeInSystray.exe (LogMeIn, Inc.)
O4 - HKLM..\Run: [] File not found
O4 - HKLM..\Run: [NUSB3MON] C:\Program Files (x86)\Renesas Electronics\USB 3.0 Host Controller Driver\Application\nusb3mon.exe (Renesas Electronics Corporation)
O6 - HKLM\Software\Policies\Microsoft\Internet Explorer\Restrictions present
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorAdmin = 5
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: ConsentPromptBehaviorUser = 3
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: EnableLinkedConnections = 1
O6 - HKLM\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\System: SoftwareSASGeneration = 3
O7 - HKU\.DEFAULT\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-18\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-19\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-20\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\Software\Policies\Microsoft\Internet Explorer\Control Panel present
O7 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoThumbnailCache = 1
O7 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoLowDiskSpaceChecks = 0
O7 - HKU\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Microsoft\Windows\CurrentVersion\policies\Explorer: NoDrives = 0
O9:64bit: - Extra Button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - c:\Program Files\BullGuard Ltd\BullGuard\Antiphishing\IE\BgAntiphishingIE.dll (BullGuard Ltd.)
O9 - Extra Button: Report to BullGuard - {27FD17FB-CF63-486b-B2BE-8D8781CBEA01} - c:\Program Files\BullGuard Ltd\BullGuard\Files32\Antiphishing\IE\BgAntiphishingIE.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000001 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000002 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000003 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000004 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000005 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000006 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000007 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000008 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000009 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000010 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10:64bit: - Protocol_Catalog9\Catalog_Entries64\000000000021 - C:\Windows\SysNative\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000001 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000002 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000003 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000004 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000005 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000006 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000007 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000008 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000009 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000010 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O10 - Protocol_Catalog9\Catalog_Entries\000000000021 - C:\Windows\SysWow64\BGLsp.dll (BullGuard Ltd.)
O13 - gopher Prefix: missing
O16:64bit: - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16:64bit: - DPF: {CAFEEFAC-0016-0000-0022-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16:64bit: - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_22-windows-i586.cab (Java Plug-in 1.6.0_22)
O16 - DPF: {05CA9FB0-3E3E-4B36-BF41-0E3A5CAA8CD8} http://download.microsoft.com/download/C/B/F/CBF23A2C-3E55-4664-BC5C-762780D79BA0/OGAControl.cab (Office Genuine Advantage Validation Tool)
O16 - DPF: {166B1BCA-3F9C-11CF-8075-444553540000} http://fpdownload.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {233C1507-6A77-46A4-9443-F871F945D258} http://download.macromedia.com/pub/shockwave/cabs/director/sw.cab (Shockwave ActiveX Control)
O16 - DPF: {8AD9C840-044E-11D1-B3E9-00805F499D93} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Reg Error: Value error.)
O16 - DPF: {9191F686-7F0A-441D-8A98-2FE3AC1BD913} http://acs.pandasoftware.com/activescan/cabs/as2stubie.cab (ActiveScan 2.0 Installer Class)
O16 - DPF: {CAFEEFAC-0016-0000-0037-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 1.6.0_37)
O16 - DPF: {CAFEEFAC-FFFF-FFFF-FFFF-ABCDEFFEDCBA} http://java.sun.com/update/1.6.0/jinstall-1_6_0_37-windows-i586.cab (Java Plug-in 10.13.2)
O16 - DPF: {FD0B6769-6490-4A91-AA0A-B5AE0DC75AC9} https://secure.logmein.com//activex/ractrl.cab?lmi=1007 (Performance Viewer Activex Control)
O17 - HKLM\System\CCS\Services\Tcpip\Parameters: DhcpNameServer = 192.167.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{75032363-2630-4B82-821F-CC81FAB75A95}: DhcpNameServer = 192.167.1.1
O17 - HKLM\System\CCS\Services\Tcpip\Parameters\Interfaces\{A5E0D0D6-5E75-475C-9667-FFDB8902CEF7}: DhcpNameServer = 192.167.1.1
O18:64bit: - Protocol\Handler\livecall - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\0x00000001 - No CLSID value found
O18:64bit: - Protocol\Handler\msdaipp\oledb - No CLSID value found
O18:64bit: - Protocol\Handler\msnim - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap - No CLSID value found
O18:64bit: - Protocol\Handler\mso-offdap11 - No CLSID value found
O18:64bit: - Protocol\Handler\skype4com - No CLSID value found
O18:64bit: - Protocol\Handler\wlmailhtml - No CLSID value found
O18:64bit: - Protocol\Handler\wlpg - No CLSID value found
O18 - Protocol\Handler\msdaipp\0x00000001 {E1D2BF42-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\msdaipp\oledb {E1D2BF40-A96B-11d1-9C6B-0000F875AC61} - C:\Program Files (x86)\Common Files\System\Ole DB\MSDAIPP.DLL (Microsoft Corporation)
O18 - Protocol\Handler\skype4com {FFC8B962-9B40-4DFF-9458-1830C7DD7F5D} - C:\Program Files (x86)\Common Files\Skype\Skype4COM.dll (Skype Technologies)
O18:64bit: - Protocol\Filter\text/xml - No CLSID value found
O20:64bit: - AppInit_DLLs: (c:\PROGRA~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll) - c:\Program Files\BullGuard Ltd\BullGuard\Files32\BgAgent.dll (BullGuard Ltd.)
O20:64bit: - AppInit_DLLs: (BgGamingMonitor.dll) - C:\Windows\SysNative\BgGamingMonitor.dll (BullGuard Ltd.)
O20:64bit: - AppInit_DLLs: (c:\PROGRA~1\BULLGU~1\BULLGU~1\BgAgent.dll) - c:\Program Files\BullGuard Ltd\BullGuard\BgAgent.dll (BullGuard Ltd.)
O20:64bit: - AppInit_DLLs: (BgGamingMonitor.dll) - C:\Windows\SysNative\BgGamingMonitor.dll (BullGuard Ltd.)
O20 - AppInit_DLLs: (c:\PROGRA~1\BULLGU~1\BULLGU~1\Files32\BgAgent.dll) - c:\Program Files\BullGuard Ltd\BullGuard\Files32\BgAgent.dll (BullGuard Ltd.)
O20 - AppInit_DLLs: (BgGamingMonitor.dll) - C:\Windows\SysWow64\BgGamingMonitor.dll (BullGuard Ltd.)
O20:64bit: - HKLM Winlogon: Shell - (Explorer.exe) - C:\Windows\explorer.exe (Microsoft Corporation)
O20:64bit: - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysNative\userinit.exe (Microsoft Corporation)
O20 - HKLM Winlogon: Shell - (explorer.exe) - C:\Windows\SysWow64\explorer.exe (Microsoft Corporation)
O20 - HKLM Winlogon: UserInit - (C:\Windows\system32\userinit.exe) - C:\Windows\SysWOW64\userinit.exe (Microsoft Corporation)
O21:64bit: - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O21 - SSODL: WebCheck - {E6FB5E20-DE35-11CF-9C87-00AA005127ED} - No CLSID value found.
O32 - HKLM CDRom: AutoRun - 1
O34 - HKLM BootExecute: (autocheck autochk *)
O35:64bit: - HKLM\..comfile [open] -- "%1" %*
O35:64bit: - HKLM\..exefile [open] -- "%1" %*
O35 - HKLM\..comfile [open] -- "%1" %*
O35 - HKLM\..exefile [open] -- "%1" %*
O37:64bit: - HKLM\...com [@ = ComFile] -- "%1" %*
O37:64bit: - HKLM\...exe [@ = exefile] -- "%1" %*
O37 - HKLM\...com [@ = ComFile] -- "%1" %*
O37 - HKLM\...exe [@ = exefile] -- "%1" %*
O38 - SubSystems\\Windows: (ServerDll=winsrv:UserServerDllInitialization,3)
O38 - SubSystems\\Windows: (ServerDll=winsrv:ConServerDllInitialization,2)
O38 - SubSystems\\Windows: (ServerDll=sxssrv,4)

========== Files/Folders - Created Within 30 Days ==========

[2013/02/27 00:11:16 | 000,602,112 | ---- | C] (OldTimer Tools) -- C:\Users\Peter\Desktop\OTL.exe
[2013/02/26 23:55:37 | 000,000,000 | ---D | C] -- C:\Windows\ERUNT
[2013/02/26 23:55:29 | 000,000,000 | ---D | C] -- C:\JRT
[2013/02/26 23:53:07 | 000,547,439 | ---- | C] (Oleg N. Scherbakov) -- C:\Users\Peter\Desktop\JRT.exe
[2013/02/26 22:50:48 | 000,000,000 | -HSD | C] -- C:\$RECYCLE.BIN
[2013/02/26 22:13:23 | 000,518,144 | ---- | C] (SteelWerX) -- C:\Windows\SWREG.exe
[2013/02/26 22:13:23 | 000,406,528 | ---- | C] (SteelWerX) -- C:\Windows\SWSC.exe
[2013/02/26 22:13:23 | 000,060,416 | ---- | C] (NirSoft) -- C:\Windows\NIRCMD.exe
[2013/02/26 22:09:48 | 000,000,000 | ---D | C] -- C:\Qoobox
[2013/02/26 22:09:30 | 000,000,000 | ---D | C] -- C:\Windows\erdnt
[2013/02/26 22:00:39 | 005,036,023 | R--- | C] (Swearware) -- C:\Users\Peter\Desktop\ComboFix.exe
[2013/02/26 08:55:50 | 000,000,000 | ---D | C] -- C:\Users\Peter\Desktop\cleanup
[2013/02/26 07:53:46 | 000,000,000 | ---D | C] -- C:\Config.Msi
[2013/02/25 19:57:45 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Panda Security
[2013/02/25 19:56:40 | 000,000,000 | ---D | C] -- C:\ProgramData\Panda Security
[2013/02/25 19:31:21 | 000,102,400 | ---- | C] (TechSmith Corporation) -- C:\Windows\SysWow64\tsccvid.dll
[2013/02/25 19:31:10 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Split Text Files Into Multiple Files Software
[2013/02/25 17:01:21 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Malwarebytes
[2013/02/25 17:01:15 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Malwarebytes' Anti-Malware
[2013/02/25 17:01:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Malwarebytes
[2013/02/25 17:01:13 | 000,024,176 | ---- | C] (Malwarebytes Corporation) -- C:\Windows\SysNative\drivers\mbam.sys
[2013/02/25 17:01:13 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Malwarebytes' Anti-Malware
[2013/02/25 16:59:35 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Local\Programs
[2013/02/25 12:41:29 | 000,000,000 | ---D | C] -- C:\Program Files\Speccy
[2013/02/25 12:37:43 | 004,812,216 | ---- | C] (Piriform Ltd) -- C:\spsetup120.exe
[2013/02/21 16:56:45 | 000,265,728 | ---- | C] (AVEO Corp) -- C:\Windows\SysNative\drivers\AVEOdcnt.sys
[2013/02/21 16:56:45 | 000,057,344 | ---- | C] (Xirlink, Inc.) -- C:\Windows\SysWow64\sx_cam_i420.dll
[2013/02/21 16:56:45 | 000,036,864 | ---- | C] (AVEO) -- C:\Windows\SysWow64\AVEOcamintfc.ax
[2013/02/21 16:56:45 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\USB2.0 PC Camera
[2013/02/21 16:56:45 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\AVEO UVC Like Driver
[2013/02/21 16:22:28 | 000,000,000 | ---D | C] -- C:\Users\Peter\AppData\Roaming\Skype
[2013/02/21 16:22:22 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Skype
[2013/02/21 16:22:22 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Skype
[2013/02/21 16:22:21 | 000,000,000 | R--D | C] -- C:\Program Files (x86)\Skype
[2013/02/21 16:22:14 | 000,000,000 | ---D | C] -- C:\ProgramData\Skype
[2013/02/21 16:14:26 | 000,000,000 | ---D | C] -- C:\temp
[2013/02/21 16:13:18 | 000,000,000 | ---D | C] -- C:\Users\Peter\.yawcam
[2013/02/21 16:12:59 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Yawcam
[2013/02/11 22:23:44 | 000,000,000 | ---D | C] -- C:\perflogs
[2013/02/04 22:18:37 | 000,033,800 | ---- | C] (Panda Security, S.L.) -- C:\Windows\SysNative\drivers\pavboot64.sys
[2013/02/03 17:52:53 | 000,805,088 | ---- | C] (Realtek ) -- C:\Windows\SysNative\drivers\Rt64win7.sys
[2013/02/01 11:31:12 | 000,000,000 | ---D | C] -- C:\Program Files (x86)\Common Files\Java
[2013/01/31 19:13:20 | 000,000,000 | ---D | C] -- C:\Program Files\DIFX
[2013/01/31 19:10:20 | 002,605,400 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\WavesGUILib.dll
[2013/01/31 19:10:18 | 000,221,024 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFNHK64.dll
[2013/01/31 19:10:18 | 000,081,248 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFCOM64.dll
[2013/01/31 19:10:18 | 000,078,688 | ---- | C] (Synopsys, Inc.) -- C:\Windows\SysNative\SFAPO64.dll
[2013/01/31 19:10:13 | 000,375,128 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEP64A.dll
[2013/01/31 19:10:13 | 000,204,120 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEED64A.dll
[2013/01/31 19:10:13 | 000,101,208 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEL64A.dll
[2013/01/31 19:10:13 | 000,078,680 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RTEEG64A.dll
[2013/01/31 19:10:12 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DHT64.dll
[2013/01/31 19:10:12 | 000,310,104 | ---- | C] (Dolby Laboratories, Inc.) -- C:\Windows\SysNative\RP3DAA64.dll
[2013/01/31 19:10:09 | 007,163,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEP64A.dll
[2013/01/31 19:10:09 | 000,141,152 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEL64A.dll
[2013/01/31 19:10:08 | 008,363,864 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek.dll
[2013/01/31 19:10:08 | 001,345,368 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioRealtek264.dll
[2013/01/31 19:10:08 | 000,433,504 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EED64A.dll
[2013/01/31 19:10:08 | 000,396,632 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxVolumeSDAPO.dll
[2013/01/31 19:10:08 | 000,123,744 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEA64A.dll
[2013/01/31 19:10:08 | 000,074,592 | ---- | C] (Dolby Laboratories) -- C:\Windows\SysNative\R4EEG64A.dll
[2013/01/31 19:10:07 | 002,131,288 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioEQ.dll
[2013/01/31 19:10:07 | 001,015,640 | ---- | C] (Waves Audio Ltd.) -- C:\Windows\SysNative\MaxxAudioAPOShell64.dll
[2013/01/31 19:10:06 | 002,533,952 | ---- | C] (Fortemedia Corporation) -- C:\Windows\SysNative\FMAPO64.dll
[2013/01/31 19:10:06 | 000,693,352 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSVoiceClarityDLL64.dll
[2013/01/31 19:10:06 | 000,603,984 | ---- | C] (Knowles Acoustics ) -- C:\Windows\SysNative\KAAPORT64.dll
[2013/01/31 19:10:05 | 001,756,264 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2SpeakerDLL64.dll
[2013/01/31 19:10:05 | 000,712,296 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSSymmetryDLL64.dll
[2013/01/31 19:10:05 | 000,537,456 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PLFX64.dll
[2013/01/31 19:10:05 | 000,524,656 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PGFX64.dll
[2013/01/31 19:10:05 | 000,449,392 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSU2PREC64.dll
[2013/01/31 19:10:04 | 001,568,360 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSS2HeadphoneDLL64.dll
[2013/01/31 19:10:04 | 000,491,112 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSNeoPCDLL64.dll
[2013/01/31 19:10:04 | 000,432,744 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLimiterDLL64.dll
[2013/01/31 19:10:04 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSLFXAPO64.dll
[2013/01/31 19:10:04 | 000,242,792 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPO64.dll
[2013/01/31 19:10:04 | 000,241,768 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGFXAPONS64.dll
[2013/01/31 19:10:03 | 001,486,952 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBoostDLL64.dll
[2013/01/31 19:10:03 | 000,728,680 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSBassEnhancementDLL64.dll
[2013/01/31 19:10:03 | 000,428,648 | ---- | C] (DTS) -- C:\Windows\SysNative\DTSGainCompensatorDLL64.dll
[2013/01/31 18:40:14 | 000,000,000 | ---D | C] -- C:\ProgramData\BSD
[2013/01/31 18:39:56 | 000,000,000 | ---D | C] -- C:\ProgramData\Microsoft\Windows\Start Menu\Programs\Fighters
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files - Modified Within 30 Days ==========

[2013/02/27 00:16:09 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-1.C7483456-A289-439d-8115-601632D005A0
[2013/02/27 00:16:09 | 000,010,096 | -H-- | M] () -- C:\Windows\SysNative\7B296FB0-376B-497e-B012-9C450E1B7327-5P-0.C7483456-A289-439d-8115-601632D005A0
[2013/02/27 00:11:18 | 000,602,112 | ---- | M] (OldTimer Tools) -- C:\Users\Peter\Desktop\OTL.exe
[2013/02/27 00:08:39 | 000,000,480 | ---- | M] () -- C:\Windows\SysNative\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
[2013/02/27 00:08:06 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\RMAutoUpdate.job
[2013/02/27 00:06:32 | 000,067,584 | --S- | M] () -- C:\Windows\bootstat.dat
[2013/02/27 00:06:21 | 3220,664,320 | -HS- | M] () -- C:\hiberfil.sys
[2013/02/26 23:58:00 | 000,000,830 | ---- | M] () -- C:\Windows\tasks\Adobe Flash Player Updater.job
[2013/02/26 23:53:11 | 000,547,439 | ---- | M] (Oleg N. Scherbakov) -- C:\Users\Peter\Desktop\JRT.exe
[2013/02/26 23:19:12 | 000,594,019 | ---- | M] () -- C:\Users\Peter\Desktop\adwcleaner.exe
[2013/02/26 22:25:29 | 000,000,027 | ---- | M] () -- C:\Windows\SysNative\drivers\etc\hosts
[2013/02/26 22:00:55 | 005,036,023 | R--- | M] (Swearware) -- C:\Users\Peter\Desktop\ComboFix.exe
[2013/02/26 15:29:47 | 000,730,596 | ---- | M] () -- C:\Windows\SysNative\PerfStringBackup.INI
[2013/02/26 15:29:47 | 000,631,356 | ---- | M] () -- C:\Windows\SysNative\perfh009.dat
[2013/02/26 15:29:47 | 000,111,480 | ---- | M] () -- C:\Windows\SysNative\perfc009.dat
[2013/02/26 07:57:56 | 000,579,648 | ---- | M] () -- C:\Windows\SysNative\FNTCACHE.DAT
[2013/02/25 19:00:00 | 000,000,302 | ---- | M] () -- C:\Windows\tasks\RMSchedule.job
[2013/02/25 12:51:25 | 000,028,652 | ---- | M] () -- C:\MEDION1-PC.speccy
[2013/02/25 12:37:43 | 004,812,216 | ---- | M] (Piriform Ltd) -- C:\spsetup120.exe
[2013/02/23 19:27:07 | 000,004,394 | ---- | M] () -- C:\Windows\mozy.blk
[2013/02/23 19:27:07 | 000,000,144 | ---- | M] () -- C:\Windows\mozy.flt
[2013/02/21 16:56:45 | 000,000,864 | ---- | M] () -- C:\Users\Peter\CamApp.lnk
[2013/02/21 16:22:22 | 000,002,545 | ---- | M] () -- C:\Users\Peter\Skype.lnk
[2013/02/12 20:59:20 | 000,001,137 | ---- | M] () -- C:\Users\Peter\Application Data\Microsoft\Internet Explorer\Quick Launch\Launch Microsoft Office Outlook.lnk
[2013/02/11 22:25:31 | 000,735,282 | ---- | M] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2013/02/11 22:25:00 | 003,043,466 | ---- | M] () -- C:\Users\Peter\Desktop\test.html
[2013/01/31 18:39:56 | 000,002,184 | ---- | M] () -- C:\Users\Peter\Application Data\Microsoft\Internet Explorer\Quick Launch\DRIVERfighter.lnk
[1 C:\Windows\*.tmp files -> C:\Windows\*.tmp -> ]

========== Files Created - No Company Name ==========

[2013/02/27 00:08:38 | 000,000,480 | ---- | C] () -- C:\Windows\SysNative\F39D4DE6-98B8-4E05-91BD-549E8A8248BD
[2013/02/26 23:19:06 | 000,594,019 | ---- | C] () -- C:\Users\Peter\Desktop\adwcleaner.exe
[2013/02/26 22:13:23 | 000,256,000 | ---- | C] () -- C:\Windows\PEV.exe
[2013/02/26 22:13:23 | 000,208,896 | ---- | C] () -- C:\Windows\MBR.exe
[2013/02/26 22:13:23 | 000,098,816 | ---- | C] () -- C:\Windows\sed.exe
[2013/02/26 22:13:23 | 000,080,412 | ---- | C] () -- C:\Windows\grep.exe
[2013/02/26 22:13:23 | 000,068,096 | ---- | C] () -- C:\Windows\zip.exe
[2013/02/25 12:51:25 | 000,028,652 | ---- | C] () -- C:\MEDION1-PC.speccy
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\newspaper_640_480.bmp
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\aim_640_480.bmp
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\4_640_480.bmp
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\3_640_480.bmp
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\2_640_480.bmp
[2013/02/21 16:56:46 | 000,921,656 | ---- | C] () -- C:\Windows\SysWow64\1_640_480.bmp
[2013/02/21 16:56:46 | 000,921,654 | ---- | C] () -- C:\Windows\SysWow64\magnifier_640_480.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\newspaper_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\magnifier_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\aim_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\4_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\3_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\2_320_240.bmp
[2013/02/21 16:56:46 | 000,230,456 | ---- | C] () -- C:\Windows\SysWow64\1_320_240.bmp
[2013/02/21 16:56:46 | 000,028,672 | ---- | C] () -- C:\Windows\SysWow64\MFC_InstDrvDLL.dll
[2013/02/21 16:56:45 | 000,000,864 | ---- | C] () -- C:\Users\Peter\CamApp.lnk
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\newspaper_640_480.bmp
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\aim_640_480.bmp
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\4_640_480.bmp
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\3_640_480.bmp
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\2_640_480.bmp
[2013/02/21 16:56:11 | 000,921,656 | ---- | C] () -- C:\Windows\SysNative\1_640_480.bmp
[2013/02/21 16:56:11 | 000,921,654 | ---- | C] () -- C:\Windows\SysNative\magnifier_640_480.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\newspaper_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\magnifier_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\aim_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\4_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\3_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\2_320_240.bmp
[2013/02/21 16:56:11 | 000,230,456 | ---- | C] () -- C:\Windows\SysNative\1_320_240.bmp
[2013/02/21 16:22:22 | 000,002,545 | ---- | C] () -- C:\Users\Peter\Skype.lnk
[2013/02/11 22:26:04 | 003,043,466 | ---- | C] () -- C:\Users\Peter\Desktop\test.html
[2013/01/31 19:10:12 | 000,293,889 | ---- | C] () -- C:\Windows\SysNative\drivers\RTAIODAT.DAT
[2013/01/31 18:39:56 | 000,002,184 | ---- | C] () -- C:\Users\Peter\Application Data\Microsoft\Internet Explorer\Quick Launch\DRIVERfighter.lnk
[2013/01/23 07:12:06 | 000,009,584 | ---- | C] () -- C:\Windows\SysWow64\ractrlkeyhook.dll
[2013/01/11 20:26:08 | 000,000,114 | ---- | C] () -- C:\Users\Peter\TV Catchup.url
[2013/01/08 19:13:33 | 000,001,306 | ---- | C] () -- C:\Users\Peter\Panda Cloud Cleaner.lnk
[2012/12/22 08:54:56 | 000,000,474 | ---- | C] () -- C:\Users\Peter\View TV Abroad - Shortcut.lnk
[2012/12/21 22:31:59 | 000,204,952 | ---- | C] () -- C:\Windows\SysWow64\ativvsvl.dat
[2012/12/21 22:31:59 | 000,157,144 | ---- | C] () -- C:\Windows\SysWow64\ativvsva.dat
[2012/12/21 22:31:59 | 000,003,917 | ---- | C] () -- C:\Windows\SysWow64\atipblag.dat
[2012/12/21 19:51:16 | 003,354,624 | ---- | C] () -- C:\Users\Peter\s-1-5-21-561210605-1100357726-2750954237-1000.rrr
[2012/12/13 19:40:19 | 000,002,023 | ---- | C] () -- C:\Users\Peter\Adobe Reader XI.lnk
[2012/12/13 14:31:51 | 009,182,864 | ---- | C] () -- C:\Users\Peter\DGX-620_YPG-625_Fa.pdf
[2012/08/20 15:57:32 | 000,002,140 | ---- | C] () -- C:\Users\Peter\REALTEK 11n USB Wireless LAN Utility.lnk
[2012/08/20 15:56:23 | 000,451,072 | ---- | C] () -- C:\Windows\SysWow64\ISSRemoveSP.exe
[2012/08/20 15:47:28 | 000,002,467 | ---- | C] () -- C:\Users\Peter\SlimDrivers.lnk
[2012/05/11 22:30:50 | 000,002,257 | ---- | C] () -- C:\Users\Peter\CrossLoop Connect.lnk
[2012/05/02 14:58:10 | 000,029,184 | ---- | C] () -- C:\Windows\SysWow64\kdbsdk32.dll
[2012/02/20 14:04:13 | 000,002,018 | ---- | C] () -- C:\Users\Peter\Adobe Reader 9.lnk
[2012/01/13 23:55:08 | 000,000,180 | ---- | C] () -- C:\Users\Peter\LePuits Webmail.url
[2012/01/01 22:32:32 | 000,002,113 | ---- | C] () -- C:\Users\Peter\Nero Kwik Media.lnk
[2011/12/31 17:10:14 | 000,001,080 | ---- | C] () -- C:\Users\Peter\Oracle VM VirtualBox.lnk
[2011/10/29 11:23:03 | 000,000,242 | ---- | C] () -- C:\Users\Peter\backup outlooks.cmd
[2011/10/27 22:41:36 | 000,001,344 | ---- | C] () -- C:\Users\Peter\Corel PaintShop Photo Pro X3.lnk
[2011/10/27 22:37:32 | 000,001,176 | ---- | C] () -- C:\Users\Peter\Corel PaintShop Photo Project Creator.lnk
[2011/10/27 19:29:26 | 000,000,999 | ---- | C] () -- C:\Users\Peter\Roxio PhotoShow.lnk
[2011/10/27 19:28:51 | 000,002,101 | ---- | C] () -- C:\Users\Peter\Roxio Creator 2011 Pro.lnk
[2011/10/27 19:27:31 | 000,000,939 | ---- | C] () -- C:\Users\Peter\Roxio Streamer.lnk
[2011/10/25 11:05:45 | 000,000,000 | ---- | C] () -- C:\Users\Peter\AppData\Local\rx_image32.Cache
[2011/10/07 19:03:38 | 000,735,282 | ---- | C] () -- C:\Windows\SysWow64\PerfStringBackup.INI
[2011/03/07 23:34:29 | 000,001,006 | ---- | C] () -- C:\Users\Peter\Readiris Pro 12.lnk
[2011/03/07 23:34:29 | 000,000,150 | ---- | C] () -- C:\Windows\Readiris.ini
[2011/03/02 19:40:48 | 000,001,296 | ---- | C] () -- C:\Users\Peter\ownfile - Shortcut.lnk
[2011/03/02 19:40:39 | 000,002,208 | ---- | C] () -- C:\Users\Peter\Expenditure and Budgets personal - Shortcut.lnk
[2011/02/20 12:52:56 | 000,007,597 | ---- | C] () -- C:\Users\Peter\AppData\Local\Resmon.ResmonCfg
[2011/02/20 01:24:33 | 000,000,176 | ---- | C] () -- C:\Users\Peter\TF1 Live.url
[2011/02/13 01:44:41 | 000,006,656 | ---- | C] () -- C:\Users\Peter\AppData\Local\DCBC2A71-70D8-4DAN-EHR8-E0D61DEA3FDF.ini
[2011/02/12 20:21:07 | 000,006,632 | -HS- | C] () -- C:\ProgramData\KGyGaAvL.sys

========== ZeroAccess Check ==========

[2009/07/14 05:55:00 | 000,000,227 | RHS- | M] () -- C:\Windows\assembly\Desktop.ini

[HKEY_CURRENT_USER\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]

[HKEY_CURRENT_USER\Software\Classes\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32] /64

[HKEY_CURRENT_USER\Software\Classes\Wow6432node\clsid\{fbeb8a05-beee-4442-804e-409d6c4515e9}\InProcServer32]

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32] /64
" " = C:\Windows\SysNative\shell32.dll -- [2012/06/09 06:43:10 | 014,172,672 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{42aedc87-2188-41fd-b9a3-0c966feabec1}\InProcServer32]
" " = %SystemRoot%\system32\shell32.dll -- [2012/06/09 05:41:00 | 012,873,728 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Apartment

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\fastprox.dll -- [2009/07/14 02:40:51 | 000,909,312 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{5839FCA9-774D-42A1-ACDA-D6A79037F57F}\InProcServer32]
" " = %systemroot%\system32\wbem\fastprox.dll -- [2010/11/20 13:19:02 | 000,606,208 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Free

[HKEY_LOCAL_MACHINE\Software\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32] /64
" " = C:\Windows\SysNative\wbem\wbemess.dll -- [2009/07/14 02:41:56 | 000,505,856 | ---- | M] (Microsoft Corporation)
"ThreadingModel" = Both

[HKEY_LOCAL_MACHINE\Software\Wow6432Node\Classes\clsid\{F3130CDB-AA52-4C3A-AB32-85FFC23AF9C1}\InProcServer32]

========== LOP Check ==========

[2011/02/14 16:43:06 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\BullGuard
[2013/01/31 21:05:08 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\Fighters
[2011/12/16 21:05:23 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\JLAdventCalendarClassic2011
[2011/12/16 21:39:36 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\JLAdventCalendarLondon2011
[2011/02/14 23:18:17 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\pdf995
[2012/12/21 19:41:06 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\Registry Mechanic
[2011/02/14 07:29:45 | 000,000,000 | ---D | M] -- C:\Users\Fran\AppData\Roaming\Software Inspection Library
[2013/02/26 22:12:58 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\BullGuard
[2011/02/14 14:42:54 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\FreeImageConverter
[2011/12/19 23:41:16 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\JLAdventCalendarLondon2011
[2013/02/25 19:57:45 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Panda Security
[2011/02/14 22:44:56 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\pdf995
[2012/12/21 18:33:55 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Product_RM
[2011/02/13 19:09:52 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Simple Star
[2011/02/13 23:00:15 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Software Inspection Library
[2012/12/21 17:12:34 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\TestApp
[2011/10/27 22:48:45 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Ulead Systems
[2012/01/19 23:20:13 | 000,000,000 | ---D | M] -- C:\Users\Peter\AppData\Roaming\Windows Live Writer

========== Purity Check ==========



========== Alternate Data Streams ==========

@Alternate Data Stream - 141 bytes -> C:\ProgramData\Temp1B5B4F1
@Alternate Data Stream - 127 bytes -> C:\ProgramData\Temp:430C6D84
@Alternate Data Stream - 105 bytes -> C:\ProgramData\TempFC5A2B2

< End of report >

 

Logs - Extras

Dear Broni,
Thank you for your help. Unable to say if PC is yet more "steady" yet as it is not being used as normal by 2 users at present. Will monitor & advise ASAP.

OTL Extras logfile created on: 2/27/2013 12:12:02 AM - Run 1
OTL by OldTimer - Version 3.2.69.0 Folder = C:\Users\Peter\Desktop
64bit- Home Premium Edition Service Pack 1 (Version = 6.1.7601) - Type = NTWorkstation
Internet Explorer (Version = 8.0.7601.17514)
Locale: 00000409 | Country: Ireland | Language: ENI | Date Format: dd/MM/yyyy

4.00 Gb Total Physical Memory | 2.23 Gb Available Physical Memory | 55.65% Memory free
8.00 Gb Paging File | 6.19 Gb Available in Paging File | 77.41% Paging File free
Paging file location(s): ?:\pagefile.sys [binary data]

%SystemDrive% = C: | %SystemRoot% = C:\Windows | %ProgramFiles% = C:\Program Files (x86)
Drive C: | 900.41 Gb Total Space | 718.46 Gb Free Space | 79.79% Space Free | Partition Type: NTFS
Drive D: | 30.00 Gb Total Space | 10.37 Gb Free Space | 34.58% Space Free | Partition Type: NTFS

Computer Name: MEDION1-PC | User Name: Peter | Logged in as Administrator.
Boot Mode: Normal | Scan Mode: All users | Quick Scan | Include 64bit Scans
Company Name Whitelist: On | Skip Microsoft Files: On | No Company Name Whitelist: On | File Age = 30 Days

========== Extra Registry (SafeList) ==========


========== File Associations ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.url[@ = InternetShortcut] -- C:\Windows\SysNative\rundll32.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<extension>]
.cpl [@ = cplfile] -- C:\Windows\SysWow64\control.exe (Microsoft Corporation)
.html [@ = Reg Error: Value error.] -- Reg Error: Key error. File not found

[HKEY_USERS\.DEFAULT\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-18\SOFTWARE\Classes\<extension>]
.html [@ = ChromeHTML] -- Reg Error: Key error. File not found

[HKEY_USERS\S-1-5-21-561210605-1100357726-2750954237-1000\SOFTWARE\Classes\<extension>]
.html [@ = htmlfile] -- Reg Error: Key error. File not found

========== Shell Spawning ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [print] -- rundll32.exe %SystemRoot%\system32\mshtml.dll,PrintHTML "%1" (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
InternetShortcut [open] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\ieframe.dll ",OpenURL %l (Microsoft Corporation)
InternetShortcut [print] -- "C:\Windows\System32\rundll32.exe" "C:\Windows\System32\mshtml.dll ",PrintHTML "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with Corel PaintShop Photo Pro X3] -- "c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

[HKEY_LOCAL_MACHINE\SOFTWARE\Classes\<key>\shell\[command]\command]
batfile [open] -- "%1" %*
cmdfile [open] -- "%1" %*
comfile [open] -- "%1" %*
cplfile [cplopen] -- %SystemRoot%\System32\control.exe "%1 ",%* (Microsoft Corporation)
exefile [open] -- "%1" %*
helpfile [open] -- Reg Error: Key error.
htmlfile [edit] -- Reg Error: Key error.
htmlfile [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
htmlfile [opennew] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
http [open] -- "C:\Program Files\Internet Explorer\iexplore.exe" %1 (Microsoft Corporation)
https [open] -- Reg Error: Key error.
inffile [install] -- %SystemRoot%\System32\InfDefaultInstall.exe "%1" (Microsoft Corporation)
piffile [open] -- "%1" %*
regfile [merge] -- Reg Error: Key error.
scrfile [config] -- "%1 "
scrfile [install] -- rundll32.exe desk.cpl,InstallScreenSaver %l
scrfile [open] -- "%1" /S
txtfile [edit] -- Reg Error: Key error.
Unknown [openas] -- %SystemRoot%\system32\rundll32.exe %SystemRoot%\system32\shell32.dll,OpenAs_RunDLL %1
Directory [Browse with Corel PaintShop Photo Pro X3] -- "c:\Program Files (x86)\Corel\Corel PaintShop Photo Pro\X3\PSPClassic\Corel Paint Shop Pro Photo.exe" "%L" (Corel, Inc.)
Directory [cmd] -- cmd.exe /s /k pushd "%V" (Microsoft Corporation)
Directory [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [open] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)
Folder [explore] -- Reg Error: Value error.
Drive [find] -- %SystemRoot%\Explorer.exe (Microsoft Corporation)

========== Security Center Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]
"cval" = 1
"FirewallDisableNotify" = 0
"AntiVirusDisableNotify" = 0
"UpdatesDisableNotify" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Monitoring]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]
"VistaSp1" = 28 4D B2 76 41 04 CA 01 [binary data]
"AntiVirusOverride" = 0
"AntiSpywareOverride" = 0
"FirewallOverride" = 0

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc\Vol]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center]

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Security Center\Svc]

========== System Restore Settings ==========

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows NT\CurrentVersion\SystemRestore]
"DisableSR" = 0

========== Firewall Settings ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\DomainProfile]

[HKEY_LOCAL_MACHINE\SOFTWARE\Policies\Microsoft\WindowsFirewall\StandardProfile]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\GloballyOpenPorts\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\PublicProfile]
"DisableNotifications" = 0
"EnableFirewall" = 1

========== Authorized Applications List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\DomainProfile\AuthorizedApplications\List]

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\StandardProfile\AuthorizedApplications\List]


========== Vista Active Open Ports Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{036A928A-0F6C-4FED-999C-E56C015205C6}" = lport=137 | protocol=17 | dir=in | app=system |
"{060BE456-FEFE-44B2-8E50-C86F075357D7}" = lport=53 | protocol=17 | dir=in | name=rtldns-port-2 |
"{0945B96D-BAF5-4BAC-99E7-CFB7A32A2E97}" = lport=1900 | protocol=17 | dir=in | name=windows live communications platform (ssdp) |
"{0F302F8D-BD83-457A-A4FF-AC3C210DC373}" = rport=139 | protocol=6 | dir=out | app=system |
"{154E8103-1336-4F77-B402-CC812411B298}" = rport=137 | protocol=17 | dir=out | app=system |
"{15A57006-60FC-4060-9680-939694E0F425}" = lport=2177 | protocol=6 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{1EC346A2-91E0-4A45-8AB6-B83EC0591D7E}" = lport=67 | protocol=17 | dir=in | name=rtldhcp-port |
"{24F4F5D7-0564-42D6-A5D2-1EAA54FB7C12}" = lport=53 | protocol=6 | dir=in | name=rtldns-port |
"{2E55B0B8-F8F9-44AD-873A-E98CE058E6B3}" = lport=rpc | protocol=6 | dir=in | svc=spooler | app=%systemroot%\system32\spoolsv.exe |
"{2F73AA8E-19F3-4879-A9BF-F1856536580F}" = lport=53 | protocol=17 | dir=in | name=realtek ap udp prot |
"{3B619D04-5C1F-4DB4-9302-0216D4945162}" = lport=2869 | protocol=6 | dir=in | name=windows live communications platform (upnp) |
"{46B411BA-D465-45A6-B226-7E82F0DFD04D}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{4AED674A-FE93-4A7A-97E8-56DC32D97B99}" = lport=1900 | protocol=17 | dir=in | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{50A04CFA-5D8D-49C3-B3FA-8B0243BD2912}" = lport=5355 | protocol=17 | dir=in | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{58EF77ED-330C-4E79-95FA-BD7224F620E5}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6175CCBA-C3D0-4099-ACAD-7697727A49E6}" = rport=5355 | protocol=17 | dir=out | svc=dnscache | app=%systemroot%\system32\svchost.exe |
"{6C5A829C-2021-4172-83E8-CC76230AC301}" = rport=1900 | protocol=17 | dir=out | svc=ssdpsrv | app=%systemroot%\system32\svchost.exe |
"{6D138BD4-7031-4B70-BBCF-701B5158A1D7}" = lport=139 | protocol=6 | dir=in | app=system |
"{6D14706E-2816-4D93-BCEB-BCA93EC57D04}" = lport=rpc-epmap | protocol=6 | dir=in | svc=rpcss | name=@firewallapi.dll,-28539 |
"{72F3A463-B404-423B-B344-11505FCC7E98}" = rport=2177 | protocol=17 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{74290481-8EF0-4C0B-8B43-A071E3701089}" = rport=138 | protocol=17 | dir=out | app=system |
"{8D9195DF-E1F6-4188-B3CA-A988DEE876D9}" = rport=445 | protocol=6 | dir=out | app=system |
"{93958F1D-F887-424B-AA1F-9FFAB3F17D6B}" = lport=68 | protocol=17 | dir=in | name=rtldhcp-port-2 |
"{9DFB00F5-EE67-4A36-95AE-6AD19827C189}" = lport=445 | protocol=6 | dir=in | app=system |
"{A657AA5D-80CB-46B8-B7C9-180653029478}" = lport=138 | protocol=17 | dir=in | app=system |
"{A7403483-E903-4D8E-B290-7DAF4167134B}" = lport=2869 | protocol=6 | dir=in | app=system |
"{B68A5688-D26A-42C1-9AA8-9E2592EEF4CA}" = rport=2177 | protocol=6 | dir=out | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{B8F24749-46EC-4302-8076-7FA813A7F036}" = lport=2177 | protocol=17 | dir=in | svc=qwave | app=%systemroot%\system32\svchost.exe |
"{C07368BC-BEC6-4125-A653-485108DFE100}" = lport=1542 | protocol=6 | dir=in | name=realtek wps tcp prot |
"{C1A4A6FA-2E23-4AD0-BEF6-8C0E97392D61}" = rport=10243 | protocol=6 | dir=out | app=system |
"{DA059945-1699-46CA-A1FA-76173F14D545}" = lport=1542 | protocol=17 | dir=in | name=realtek wps udp prot |
"{E4E515BA-ACDF-48B0-9303-59829C4AE7DD}" = lport=10243 | protocol=6 | dir=in | app=system |

========== Vista Active Application Exception List ==========

[HKEY_LOCAL_MACHINE\SYSTEM\CurrentControlSet\Services\SharedAccess\Parameters\FirewallPolicy\FirewallRules]
"{13149270-227A-4615-A9BC-2EBDBF0A4D43}" = dir=in | app=c:\program files (x86)\windows live\mesh\moe.exe |
"{1AE5F37D-72A0-4543-A7F4-8C96BE8C98AD}" = protocol=58 | dir=in | name=@firewallapi.dll,-28545 |
"{2ADAEAEE-7FF1-49E4-BC3E-7E88CB83B56C}" = protocol=6 | dir=in | app=c:\program files\roxio\roxio streamer\configurationwizard\roxiostreamer.exe |
"{2E2051F3-E73E-4CF4-99F6-7B18E5EE702A}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\vncviewer.exe |
"{310B97CE-93DB-4840-A5E6-230E7BB78703}" = protocol=17 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe |
"{3E6B3BC2-DB52-4031-BC31-2C3E0CC53AE3}" = protocol=17 | dir=in | app=c:\program files (x86)\realtek\11n usb wireless lan utility\rtldhcp.exe |
"{41905FE7-3F57-4A37-9DE2-D8E5B37D39FE}" = protocol=17 | dir=in | app=c:\program files\roxio\roxio streamer\configurationwizard\roxiostreamer.exe |
"{44760D47-9A45-4B24-8080-6763F4A448CA}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\wzse22.tmp\setup.exe |
"{4891F780-B7C7-41FA-AD77-B7DDE2375358}" = dir=in | app=c:\program files (x86)\common files\apple\apple application support\webkit2webprocess.exe |
"{499C8414-BAF8-4211-AABE-527090943E41}" = protocol=6 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{49A663E6-3A25-40BA-B4E0-90340B964D5D}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\vncviewer.exe |
"{5D9EACD9-D684-4F07-99D1-1A29BB765D22}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\tvnserver.exe |
"{5EC51DBE-28C0-4990-98F6-5BD2F6D56217}" = protocol=17 | dir=in | app=c:\program files (x86)\realtek\11n usb wireless lan utility\rtwlan.exe |
"{6317483C-5100-4B48-ABEC-17FD8C31B3D9}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\tvnserver.exe |
"{67627EC1-A6F1-439B-B863-69B0043CF4FC}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\wzse19.tmp\setup.exe |
"{6F1020AC-BDC5-4DDA-BB22-6702CE8CAACC}" = protocol=6 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe |
"{72F93A05-6AA2-40FA-AEAF-EAD0645DB57B}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{73687110-D1BE-42CF-B539-CD5BB86FFD62}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\roxiocreator2011pro_ja08nxd0r14\setup.exe |
"{73F6E0C6-6CE5-439F-A8A1-3DA730468924}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\wzse19.tmp\setup.exe |
"{7AB5AFE2-B714-4448-824E-FDDDE696D5CD}" = protocol=6 | dir=out | svc=upnphost | app=%systemroot%\system32\svchost.exe |
"{7B340DA7-C25E-4246-9319-5EC6A5BA092F}" = protocol=17 | dir=in | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{7C22EBDB-02C9-4762-BD52-F6CC2771544C}" = dir=in | app=c:\program files (x86)\windows live\contacts\wlcomm.exe |
"{7C7C96DA-A61E-442C-82FF-78BDB804C704}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\crossloopconnect.exe |
"{7E8D15C9-9288-4C2F-A55E-CE6AD7CD52FD}" = protocol=1 | dir=in | name=@firewallapi.dll,-28543 |
"{805F1E70-DBBF-4AE6-AF71-B0087B6DCA47}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\wzse19.tmp\setup.exe |
"{81438ACE-E0A7-4C96-AB88-661CDB63AC38}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{8198A6EA-99FD-42F5-8016-F99E46C9FBE2}" = protocol=6 | dir=in | app=c:\program files (x86)\realtek\11n usb wireless lan utility\rtwlan.exe |
"{83F58432-E960-4161-A65B-A83DD3546C5E}" = protocol=58 | dir=out | name=@iphlpsvc.dll,-503 |
"{87B865BE-075C-4EC1-8CDB-10BA108051A1}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\crossloopconnect.exe |
"{8A1B10DC-459B-477F-A8C5-5ACCD588E241}" = protocol=17 | dir=out | app=%programfiles(x86)%\windows media player\wmplayer.exe |
"{8AB16FF8-69AF-4DF6-83B6-9B3AF0115460}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\rm.exe |
"{9560B178-D003-4F7E-AFAF-E0E11843D6AE}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{95E88865-1CA5-400B-BF55-EB294C1952C1}" = protocol=6 | dir=out | app=system |
"{974A2D79-9CEB-454E-8D3F-9E75CB81B895}" = protocol=1 | dir=out | name=@firewallapi.dll,-28544 |
"{98600217-D99E-4B18-AA64-BC5B92415D8B}" = protocol=6 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{9939444B-5EF9-4DEA-A98E-BAEBB2A36626}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\vncviewer.exe |
"{99C290BB-BF91-495C-A1EC-E04D66EBDEAF}" = protocol=58 | dir=out | name=@firewallapi.dll,-28546 |
"{9B395632-82CF-4899-AB53-49EF983D14CB}" = dir=in | app=c:\program files (x86)\skype\phone\skype.exe |
"{A0AE1B9C-1753-4AAF-B304-26CDA005E496}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{A857C0A9-7002-4F83-9F95-32493AB5778A}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\wzse22.tmp\setup.exe |
"{A957CE29-0125-4403-B506-26433A013FBB}" = protocol=6 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\quickconnect\axentrasmartshortcut.exe |
"{B3293AF8-F3BE-414F-94EA-F9EC34FC7E8B}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\roxiocreator2011pro_ja08nxd0r14\setup.exe |
"{B83D4DCD-C28C-44F8-B0C5-31B54580F006}" = protocol=6 | dir=in | app=c:\program files (x86)\realtek\11n usb wireless lan utility\rtldhcp.exe |
"{B888EF3F-28AC-468C-B5D7-5155D5BBBB16}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\wzse22.tmp\setup.exe |
"{B9F8CBDE-7098-4540-89A6-4BEC47878E31}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{BB0E419B-EA95-4228-B9FC-14AE4758330E}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\tvnserver.exe |
"{BF28815B-00F8-4E56-95DB-D22831FF5109}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{BF299E9A-07AB-42A8-9D39-7E753D0DA2F1}" = protocol=6 | dir=in | app=c:\program files\roxio\roxio streamer\configurationwizard\roxiostreamer.exe |
"{C4234465-1C38-4305-BFC7-C796E1357FC7}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{D0E97743-44C1-4877-96FB-FB66187F7500}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\tvnserver.exe |
"{D36FF82B-5D52-4886-8D6B-C91E176E2566}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\vncviewer.exe |
"{D7024124-38B4-4D0A-BC79-C603FBE16408}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\wzse22.tmp\setup.exe |
"{DB657013-816E-4640-9D8F-730FC90023B5}" = protocol=17 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"{DEA07300-94F7-46C2-8249-97C595231B83}" = protocol=58 | dir=in | app=system |
"{DF187F0F-64A8-4980-BE7C-1A1DCE8314E0}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\roxiocreator2011pro_ja08nxd0r14\setup.exe |
"{E0AE63D5-2412-4367-A2F0-DF737AF8258E}" = protocol=17 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\umi.exe |
"{EA63862D-702F-4CD1-BD0D-5E0A9C6E9EF5}" = dir=in | app=c:\program files (x86)\windows live\messenger\msnmsgr.exe |
"{EE2C64FA-A80F-4615-8BDC-56CFA5952D2C}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmplayer.exe |
"{F2A8C5E8-10B0-4DE6-8AB1-ED5001B021BB}" = protocol=17 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\quickconnect\axentrasmartshortcut.exe |
"{F3556FA6-5D79-47E6-83CD-679BE80AF40B}" = protocol=6 | dir=in | app=c:\program files (x86)\pinnacle\studio 14\programs\studio.exe |
"{F45FCA29-6AC2-4810-8EEF-1C90691A0383}" = protocol=17 | dir=in | app=c:\program files\roxio\roxio streamer\configurationwizard\roxiostreamer.exe |
"{F4A7DE93-63CA-43B0-9635-4A8AC955DD6C}" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\temp\wzse19.tmp\setup.exe |
"{FB5D46AE-76FC-4E25-A3EF-EFF833902A5F}" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\temp\roxiocreator2011pro_ja08nxd0r14\setup.exe |
"{FE7722FF-F476-4A0A-B175-430875EB1F0C}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmplayer.exe |
"{FEB0D60F-D2D1-4BC0-BC0D-A715392E54CD}" = protocol=17 | dir=in | app=%programfiles%\windows media player\wmpnetwk.exe |
"{FEDCA3EB-84B5-44FD-A9FF-853FD1809731}" = protocol=6 | dir=out | app=%programfiles%\windows media player\wmpnetwk.exe |
"TCP Query User{0EEEE379-C394-4CAF-9680-135EA65E9F15}C:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe" = protocol=6 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe |
"TCP Query User{309D3D97-54E0-436B-8531-1850C553AF3B}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=6 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"TCP Query User{710DA6A8-112A-4BBE-9477-0BFD0F17F13A}C:\windows\syswow64\javaw.exe" = protocol=6 | dir=in | app=c:\windows\syswow64\javaw.exe |
"TCP Query User{DAB4FCD9-21D4-47DB-B3E7-FA58FE75C62D}C:\users\peter\appdata\local\crossloop\crossloopconnect.exe" = protocol=6 | dir=in | app=c:\users\peter\appdata\local\crossloop\crossloopconnect.exe |
"UDP Query User{3AA92339-B16B-4542-B4BA-2A323E9EFAF0}C:\program files (x86)\internet explorer\iexplore.exe" = protocol=17 | dir=in | app=c:\program files (x86)\internet explorer\iexplore.exe |
"UDP Query User{43194B50-9638-46DF-8882-C71102398D0A}C:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe" = protocol=17 | dir=in | app=c:\program files (x86)\roxio streamer desktop applications\hipservagent\hipservagent.exe |
"UDP Query User{5D98EFAD-FDDF-41C8-BB9C-233B99CC7A66}C:\users\peter\appdata\local\crossloop\crossloopconnect.exe" = protocol=17 | dir=in | app=c:\users\peter\appdata\local\crossloop\crossloopconnect.exe |
"UDP Query User{E44291A1-05F3-4AB4-8DBE-E2FD1A6424E7}C:\windows\syswow64\javaw.exe" = protocol=17 | dir=in | app=c:\windows\syswow64\javaw.exe |

========== HKEY_LOCAL_MACHINE Uninstall List ==========

64bit: [HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"{0407893F-352C-B182-E04A-A8C3333DA29B}" = AMD Drag and Drop Transcoding
"{042B10AA-8233-A9E0-4DEB-B7253C686DBB}" = AMD Fuel
"{0DCAB5DD-CC69-271A-CF03-F2BD6B60BD8A}" = AMD Media Foundation Decoders
"{19DCDC0D-9D87-46DB-A4B0-08B35AA333A3}" = Corel Shell Extension - 64Bit
"{19F09425-3C20-4730-9E2A-FC2E17C9F362}" = Windows Live Remote Service Resources
"{1B8ABA62-74F0-47ED-B18C-A43128E591B8}" = Windows Live ID Sign-in Assistant
"{1D8E6291-B0D5-35EC-8441-6616F567A0F7}" = Microsoft Visual C++ 2010 x64 Redistributable - 10.0.40219
"{1EB2CFC3-E1C5-4FC4-B1F8-549DD6242C67}" = Windows Live Remote Service Resources
"{2426E29F-9E8C-4C0B-97FC-0DB690C1ED98}" = Windows Live Remote Client Resources
"{26A24AE4-039D-4CA4-87B4-2F86416022FF}" = Java(TM) 6 Update 22 (64-bit)
"{2F304EF4-0C31-47F4-8557-0641AAE4197C}" = Windows Live Remote Client Resources
"{456FB9B5-AFBC-4761-BBDC-BA6BAFBB818F}" = Windows Live Remote Client Resources
"{46DA7FD9-8BC1-7BA8-98D1-27F46647871B}" = AMD Catalyst Install Manager
"{480F28F0-8BCE-404A-A52E-0DBB7D1CE2EF}" = Windows Live Remote Service Resources
"{4EBB71B6-EF61-0263-9665-C041F6EE4A7F}" = MozyHome
"{503F672D-6C84-448A-8F8F-4BC35AC83441}" = AMD APP SDK Runtime
"{504184A2-1B0E-5D93-603A-517E93E7EDB3}" = AMD Accelerated Video Transcoding
"{5151E2DB-0748-4FD1-86A2-72E2F94F8BE7}" = Windows Live Remote Service Resources
"{57580625-C673-7FEA-8791-E84B7AAF5069}" = ccc-utility64
"{5E2CD4FB-4538-4831-8176-05D653C3E6D4}" = Windows Live Remote Service Resources
"{5EB6F3CB-46F4-451F-A028-7F6D8D35D7D0}" = Windows Live Language Selector
"{5FCE6D76-F5DC-37AB-B2B8-22AB8CEDB1D4}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.6161
"{5FEAD3E5-A158-4B66-B92B-0C959D7CF838}" = Windows Live Remote Service Resources
"{656DEEDE-F6AC-47CA-A568-A1B4E34B5760}" = Windows Live Remote Service Resources
"{692CCE55-9EAE-4F57-A834-092882E7FE0B}" = Windows Live Remote Client Resources
"{6C9D3F1D-DBBE-46F9-96A0-726CC72935AF}" = Windows Live Remote Service Resources
"{6CBFDC3C-CF21-4C02-A6DC-A5A2707FAF55}" = Windows Live Remote Service Resources
"{6DE721A5-5E89-4D74-994C-652BB3C0672E}" = Pinnacle Video Driver
"{8220EEFE-38CD-377E-8595-13398D740ACE}" = Microsoft Visual C++ 2008 Redistributable - x64 9.0.30729.17
"{8338783A-0968-3B85-AFC7-BAAE0A63DC50}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x64 9.0.30729.5570
"{847B0532-55E3-4AAF-8D7B-E3A1A7CD17E5}" = Windows Live Remote Client Resources
"{850B8072-2EA7-4EDC-B930-7FE569495E76}" = Windows Live Remote Client Resources
"{8970AE69-40BE-4058-9916-0ACB1B974A3D}" = Windows Live Remote Client Resources
"{89F4137D-6C26-4A84-BDB8-2E5A4BB71E00}" = Microsoft Silverlight
"{8EB588BD-D398-40D0-ADF7-BE1CEEF7C116}" = Windows Live Remote Client Resources
"{95120000-00B9-0409-1000-0000000FF1CE}" = Microsoft Application Error Reporting
"{9D6DFAD6-09E5-445E-A4B5-A388FEEBD90D}" = RBVirtualFolder64Inst
"{A679FBE4-BA2D-4514-8834-030982C8B31A}" = Windows Live Remote Service Resources
"{B44C746E-2A9E-4184-9FF8-7A44FCA749CE}" = Roxio Streamer x64
"{B6E3757B-5E77-3915-866A-CCFC4B8D194C}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x64 8.0.50727.4053
"{B750FA38-7AB0-42CB-ACBB-E7DBE9FF603F}" = Windows Live Remote Client Resources
"{BCA9334F-B6C9-4F65-9A73-AC5A329A4D04}" = PlayReady PC Runtime amd64
"{C9F05151-95A9-4B9B-B534-1760E2D014A5}" = Windows Live Remote Client Resources
"{D1C1556C-7FF3-48A3-A5D6-7126F0FAFB66}" = Windows Live Remote Client Resources
"{D3E4F422-7E0F-49C7-8B00-F42490D7A385}" = Windows Live Remote Service Resources
"{D5876F0A-B2E9-4376-B9F5-CD47B7B8D820}" = Windows Live Remote Client Resources
"{D5FE818E-F1C7-44F8-A3C0-C08761906E27}" = Share64
"{D930AF5C-5193-4616-887D-B974CEFC4970}" = Windows Live Remote Service Resources
"{DA54F80E-261C-41A2-A855-549A144F2F59}" = Windows Live MIME IFilter
"{DB9C43F7-0B0F-4E43-9E6B-F945C71C469E}" = VD64Inst
"{DBEDAF67-C5A3-4C91-951D-31F3FE63AF3F}" = Windows Live Remote Client Resources
"{DF6D988A-EEA0-4277-AAB8-158E086E439B}" = Windows Live Remote Client
"{E02A6548-6FDE-40E2-8ED9-119D7D7E641F}" = Windows Live Remote Service
"{EE936C7A-EA40-31D5-9B65-8E3E089C3828}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x64 9.0.30729.4148
"{F5B09CFD-F0B2-36AF-8DF4-1DF6B63FC7B4}" = Microsoft .NET Framework 4 Client Profile
"{F6CB2C5F-B2C1-4DF1-BF44-39D0DC06FE6F}" = Windows Live Remote Service Resources
"25C700CDFADF976911CDD51CA2447920B237242D" = Windows Driver Package - Realtek (RTL8167) Net (10/25/2012 7.065.1025.2012)
"4A5EF81C80190F479C6FB16BC8CF595275AAC778" = Windows Driver Package - Realtek Semiconductor Corp. HD Audio Driver (06/19/2012 6.0.1.6662)
"5FD2F0AFB40FD986428EEFF6CE92B9DE1760ADAE" = Windows Driver Package - Realtek Semiconductor Corp. (RTL8192su) Net (05/22/2012 1086.49.0522.2012)
"61A5395DC2E89CF4B832D8A31370A7485D3E5FDE" = Windows Driver Package - Renesas Electronics (nusb3hub) USB (08/21/2012 2.1.39.0)
"85BB2284011D96871518CFA7B57630FE47BEA2B4" = Windows Driver Package - Realtek (RTL8167) Net (12/26/2012 7.067.1226.2012)
"BullGuard" = BullGuard
"FB1D3CA5E82F2B8B832547780586B995B1F942BA" = Windows Driver Package - AMD (amd_sata) HDC (04/11/2012 1.2.001.0331)
"Microsoft .NET Framework 4 Client Profile" = Microsoft .NET Framework 4 Client Profile
"Speccy" = Speccy

[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\Uninstall]
"_{C0237AA4-1BFB-46EA-860D-7B0EB365CA13}" = CorelDRAW Essentials 4
"_{CF0ADC18-6D8F-4353-8EAA-DF45456B7853}" = CorelDRAW Essentials 4 - Windows Shell Extension
"_{D1AEB5DB-04FA-489D-94EF-8600898B93EE}" = Corel PaintShop Photo Pro X3
"{002D9D5E-29BA-3E6D-9BC4-3D7D6DBC735C}" = Microsoft Visual C++ 2008 ATL Update kb973924 - x86 9.0.30729.4148
"{00884F14-05BD-4D8E-90E5-1ABF78948CA4}" = Windows Live Mesh
"{01E9B2FF-DAF4-4529-9CC9-2101625517C7}" = nero.prerequisites.msi
"{03BB06DB-15FE-47F0-B872-E6477933C986}" = Windows Live UX Platform Language Pack
"{04668DF2-D32F-4555-9C7E-35523DCD6544}" = Control ActiveX de Windows Live Mesh para conexiones remotas
"{0654EA5D-308A-4196-882B-5C09744A5D81}" = Windows Live Photo Common
"{07B62101-7EBD-434A-94B1-B38063BE5516}" = CorelDRAW Essentials 4 - PHOTO-PAINT
"{08C8666B-C502-4AB3-B4CB-D74AC42D14FE}" = Nero BackItUp 10 Help (CHM)
"{09F56A49-A7B1-4AAB-95B9-D13094254AD1}" = Windows Live UX Platform Language Pack
"{0A9256E0-C924-46DE-921B-F6C4548A1C64}" = Windows Live Messenger
"{0B0F231F-CE6A-483D-AA23-77B364F75917}" = Windows Live Installer
"{0BE5C4DB-8EA2-483D-BD71-D7EB09040CDE}" = Windows Live UX Platform Language Pack
"{0D261C88-454B-46FE-B43B-640E621BDA11}" = Windows Live Mail
"{0EC0B576-90F9-43C3-8FAD-A4902DF4B8F4}" = Galeria de Fotografias do Windows Live
"{0ED4216F-3540-4D6B-8199-1C8DDEA3924B}" = CorelDRAW Essentials 4 - Lang DE
"{0F7A6FD0-87F5-FB5D-973C-CF604DE1BC6B}" = CCC Help Polish
"{10186F1A-6A14-43DF-A404-F0105D09BB07}" = Windows Live Mail
"{1203DC60-D9BD-44F9-B372-2B8F227E6094}" = Windows Live Temel Parçalar
"{13FAE3E3-283E-4BF4-8FE5-17D256EDDD77}" = Windows Live UX Platform Language Pack
"{14B441B7-774D-4170-98EA-A13667AE6218}" = Windows Live Writer Resources
"{16987E99-C95C-4513-9239-7B44A0A71DB5}" = Nero SoundTrax 10 Help (CHM)
"{17F99FCE-8F03-4439-860A-25C5A5434E18}" = Windows Live Essentials
"{196467F1-C11F-4F76-858B-5812ADC83B94}" = MSXML 4.0 SP3 Parser
"{198EA334-8A3F-4CB2-9D61-6C10B8168A6F}" = Windows Live Writer
"{19AC095C-3520-4999-AA15-93B6D0248A50}" = CorelDRAW Essentials 4 - Content
"{19BA08F7-C728-469C-8A35-BFBD3633BE08}" = Windows Live Movie Maker
"{1A9BE3D6-4D53-2C9D-B77D-562D85936B91}" = CCC Help Norwegian
"{1D273D91-D7D5-4036-8B84-EB4615FF5F81}" = SmartSound Sonicfire Pro 5
"{1D6C2068-807F-4B76-A0C2-62ED05656593}" = Windows Live Writer
"{1DDB95A4-FD7B-4517-B3F1-2BCAA96879E6}" = Windows Live Writer Resources
"{1E87F5D4-3502-4F8E-86A5-61DE5AAD1060}" = Windows Live UX Platform Language Pack
"{1F1C2DFC-2D24-3E06-BCB8-725134ADF989}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.4148
"{1F6AB0E7-8CDD-4B93-8A23-AA9EB2FEFCE4}" = Junk Mail filter update
"{1FC83EAE-74C8-4C72-8400-2D8E40A017DE}" = Windows Live Writer
"{200FEC62-3C34-4D60-9CE8-EC372E01C08F}" = Windows Live SOXE Definitions
"{210DFA65-F805-1A2B-4F83-8E27279AE385}" = Catalyst Control Center Graphics Previews Common
"{21A196EC-241B-4A79-970B-E9585F1CE90C}" = AVEO UVC Like Driver
"{241E7104-937A-4366-AD57-8FDDDB003939}" = Uzak Bağlantılar İçin Windows Live Mesh ActiveX Denetimi
"{2436F2A8-4B7E-4B6C-AE4E-604C84AA6A4F}" = Nero Core Components 10
"{25A381E1-0AB9-4E7A-ACCE-BA49D519CF4E}" = Windows Live Mail
"{26A24AE4-039D-4CA4-87B4-2F83216037FF}" = Java(TM) 6 Update 37
"{26A24AE4-039D-4CA4-87B4-2F83217013FF}" = Java 7 Update 13
"{26E3C07C-7FF7-4362-9E99-9E49E383CF16}" = Windows Live Writer Resources
"{277C1559-4CF7-44FF-8D07-98AA9C13AABD}" = Nero Multimedia Suite 10
"{27BB12C3-1292-4204-8997-427CF78B5A92}" = Free Image Converter
"{287ECFA4-719A-2143-A09B-D6A12DE54E40}" = Acrobat.com
"{2902F983-B4C1-44BA-B85D-5C6D52E2C441}" = Windows Live Mesh ActiveX Control for Remote Connections
"{29822CAD-C76A-0BEE-55F5-AAA524DA814F}" = CCC Help Greek
"{2A07C35B-8384-4DA4-9A95-442B6C89A073}" = Windows Live Essentials
"{2AD2DD70-27F7-4343-BB4E-DE50A32D854B}" = Windows Live Messenger
"{2C7E8AA1-9C03-4606-BF34-5D99D07964DA}" = Windows Live Messenger
"{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"{3125D9DE-8D7A-4987-95F3-8A42389833D8}" = Windows Live Writer Resources
"{329411A0-19F3-4740-874F-17400B126F27}" = Nero Vision 10 Help (CHM)
"{3336F667-9049-4D46-98B6-4C743EEBC5B1}" = Windows Live Photo Gallery
"{33643918-7957-4839-92C7-EA96CB621A98}" = Nero Express 10 Help (CHM)
"{34319F1F-7CF2-4CC9-B357-1AE7D2FF3AC5}" = Windows Live
"{34490F4E-48D0-492E-8249-B48BECF0537C}" = Nero DiscSpeed 10
"{34A9406E-1994-4C20-AC72-04CFA2B24545}" = CorelDRAW Essentials 4 - Lang EN
"{34F4D9A4-42C2-4348-BEF4-E553C84549E7}" = Windows Live Photo Gallery
"{3576C335-958D-4D60-A812-F68F9A2796AF}" = CorelDRAW Essentials 4 - Lang IT
"{370F888E-42A7-4911-9E34-7D74632E17EB}" = Windows Live Photo Common
"{38F48AED-66D8-464C-993E-C7296C7A199B}" = Intel(R) IPP Run-Time Installer 5.2 for Windows* on IA-32
"{3A1293DF-7D09-BB0F-9576-EC47EE4A9362}" = CCC Help Italian
"{3B9A92DA-6374-4872-B646-253F18624D5F}" = Windows Live Writer
"{3D0C22FA-96D7-4789-BC5B-991A5A99BFFA}" = Windows Live Messenger
"{3F4143A1-9C21-4011-8679-3BC1014C6886}" = Windows Live Mesh
"{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"{410DF0AA-882D-450D-9E1B-F5397ACFFA80}" = Windows Live Essentials
"{429DF1A0-3610-4E9E-8ACE-3C8AC1BA8FCA}" = Windows Live Photo Gallery
"{4433FF9E-AF21-4E41-B296-4E13BF4D52F5}" = Roxio Creator 2011 Pro
"{46872828-6453-4138-BE1C-CE35FBF67978}" = Windows Live Mesh
"{47416F0B-6589-591E-C6F8-4235D2230B14}" = Catalyst Control Center InstallProxy
"{488F0347-C4A7-4374-91A7-30818BEDA710}" = Galerie de photos Windows Live
"{48C0DC5E-820A-44F2-890E-29B68EDD3C78}" = Windows Live Writer
"{4A03706F-666A-4037-7777-5F2748764D10}" = Java Auto Updater
"{4A275FD1-2F24-4274-8C01-813F5AD1A92D}" = Windows Live Messenger
"{4B28D47A-5FF0-45F8-8745-11DC2A1C9D0F}" = Windows Live Writer
"{4CBABDFD-49F8-47FD-BE7D-ECDE7270525A}" = Windows Live PIMT Platform
"{4E76FF7E-AEBA-4C87-B788-CD47E5425B9D}" = Skypeâ„¢ 6.2
"{51C7AD07-C3F6-4635-8E8A-231306D810FE}" = Cisco LEAP Module
"{523B2B1B-D8DB-4B41-90FF-C4D799E2758A}" = Nero ControlCenter 10 Help (CHM)
"{5275D81E-83AD-4DE4-BC2B-6E6BA3A33244}" = Windows Live Writer Resources
"{543E6ACA-51B7-4283-82F2-57C0582A53C5}" = Windows Live UX Platform Language Pack
"{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"{5500BB35-1C21-4328-9F16-F894B860FADE}" = CorelDRAW Essentials 4 - Lang NL
"{555868C6-49FB-484F-BB43-8980651A1B00}" = Nero BurnRights 10 Help (CHM)
"{55D003F4-9599-44BF-BA9E-95D060730DD3}" = Contrôle ActiveX Windows Live Mesh pour connexions à distance
"{57220148-3B2B-412A-A2E0-82B9DF423696}" = Windows Live Mesh ActiveX-objekt til fjernforbindelser
"{5CF5B1A5-CBC3-42F0-8533-5A5090665862}" = Windows Live Mesh
"{5D273F60-0525-48BA-A5FB-D0CAA4A952AE}" = Windows Live Movie Maker
"{6057E21C-ABE9-4059-AE3E-3BEB9925E660}" = Windows Live Messenger
"{60C3C026-DB53-4DAB-8B97-7C1241F9A847}" = Windows Live Movie Maker
"{612C34C7-5E90-47D8-9B5C-0F717DD82726}" = swMSM
"{625FC7D1-656D-1BEC-F86F-3EACAFDAA8FE}" = CCC Help English
"{62687B11-58B5-4A18-9BC3-9DF4CE03F194}" = Windows Live Writer Resources
"{63AA3EAB-23BB-48B2-9AD0-44F878075604}" = Nero 10 Menu TemplatePack Basic
"{63CF7D0C-B6E7-4EE9-8253-816B613CC437}" = Windows Live Mail
"{640798A0-A4FB-4C52-AC72-755134767F1E}" = Windows Live Movie Maker
"{64376910-1860-4CEF-8B34-AA5D205FC5F1}" = Poczta usługi Windows Live
"{64BF0187-F3D2-498B-99EA-163AF9AE6EC9}" = Cisco EAP-FAST Module
"{65BB0407-4CC8-4DC7-952E-3EEFDF05602A}" = Nero Update
"{66049135-9659-4AAD-9169-9CCA269EBB3E}" = Nero InfoTool 10 Help (CHM)
"{677AAD91-1790-4FC5-B285-0E6A9D65F7DC}" = Windows Live Mail
"{682B3E4F-696A-42DE-A41C-4C07EA1678B4}" = Windows Live SOXE
"{68AB6930-5BFF-4FF6-923B-516A91984FE6}" = Nero BackItUp 10
"{6A05FEDF-662E-46BF-8A25-010E3F1C9C69}" = Windows Live UX Platform Language Pack
"{6A563426-3474-41C6-B847-42B39F1485B2}" = Windows Live Messenger
"{6ABE832B-A5C7-44C1-B697-3E123B7B4D5B}" = Windows Live Mesh
"{6B0A2ECE-E4C6-4BA3-AE9D-8B827F03B992}" = Windows Live UX Platform Language Pack
"{6B318C80-7BE4-4D79-9F53-4290958EA984}" = Windows Live UX Platform Language Pack
"{6B556C37-8919-4991-AC34-93D018B9EA49}" = Windows Live Photo Common
"{6DEC8BD5-7574-47FA-B080-492BBBE2FEA3}" = Windows Live Movie Maker
"{6DFB899F-17A2-48F0-A533-ED8D6866CF38}" = Nero Control Center 10
"{6E29C4F7-C2C2-4B18-A15C-E09B92065F15}" = Windows Live Mesh ActiveX-vezérlő távoli kapcsolatokhoz
"{6EE9F44A-B8C7-4CDB-B2A9-441AF2AE315A}" = Windows Live Messenger
"{70550193-1C22-445C-8FA4-564E155DB1A7}" = Nero Express 10
"{710f4c1c-cc18-4c49-8cbf-51240c89a1a2}" = Microsoft Visual C++ 2005 Redistributable
"{71A81378-79D5-40CC-9BDC-380642D1A87F}" = Windows Live Writer
"{71C95134-F6A9-45E7-B7B3-07CA6012BF2A}" = Windows Live Mesh
"{7272F232-A7E0-4B2B-A5D2-71B7C5E2379C}" = Windows Live Fotótár
"{7299052b-02a4-4627-81f2-1818da5d550d}" = Microsoft Visual C++ 2005 Redistributable
"{729B89D0-946A-407E-A121-343BD3320C40}" = Roxio BackOnTrack
"{7351EEF8-9D6C-5F46-5A19-F2C7456CE132}" = CCC Help German
"{73FC3510-6421-40F7-9503-EDAE4D0CF70D}" = Windows Live Photo Common
"{7496FD31-E5CB-4AE4-82D3-31099558BF6A}" = Windows Live Mesh
"{76046298-768C-492C-8C93-2983C9E3719E}" = Windows Live UX Platform Language Pack
"{76E852ED-1B06-4BC8-9D6A-625DB95FB7E5}" = CorelDRAW Essentials 4 - IPM - No VBA
"{770657D0-A123-3C07-8E44-1C83EC895118}" = Microsoft Visual C++ 2005 ATL Update kb973923 - x86 8.0.50727.4053
"{77CDA026-3860-4C95-8233-34F3CEF121FB}" = Roxio Creator 2011 Pro
"{789A5B64-9DD9-4BA5-915A-F0FC0A1B7BFE}" = Apple Software Update
"{78DAE910-CA72-450E-AD22-772CB1A00678}" = Windows Live Mesh
"{7A295D8F-484B-4FFB-89AB-C1FD497591FE}" = Nero WaveEditor 10 Help (CHM)
"{7A5D731D-B4B3-490E-B339-75685712BAAB}" = Nero Burning ROM 10
"{7A9D47BA-6D50-4087-866F-0800D8B89383}" = Podstawowe programy Windows Live
"{7BA19818-F717-4DFB-BC11-FAF17B2B8AEE}" = Pošta Windows Live
"{7D1C7B9F-2744-4388-B128-5C75B8BCCC84}" = Windows Live Essentials
"{7E017923-16F8-4E32-94EF-0A150BD196FE}" = Windows Live Writer
"{7E90B133-FF47-48BB-91B8-36FC5A548FE9}" = Windows Live Writer Resources
"{7F172E34-4107-8964-6AEA-5051FFD265FF}" = CCC Help Portuguese
"{7F6021AE-E688-4D03-843A-C2260482BA0D}" = Windows Live Messenger
"{803259ED-7A67-4CB5-B6D7-281ED371091B}" = LogMeIn
"{80956555-A512-4190-9CAD-B000C36D6B6B}" = Windows Live Messenger
"{827D3E4A-0186-48B7-9801-7D1E9DD40C07}" = Windows Live Essentials
"{841F1FB4-FDF8-461C-A496-3E1CFD84C0B5}" = Windows Live Mesh
"{84267681-BF16-40B6-9564-27BC57D7D71C}" = Windows Live Photo Common
"{84D35251-965C-471B-A1FA-0926179A95AB}" = BIAS SoundSoap SE 2.4
"{85373DA7-834E-4850-8AF5-1D99F7526857}" = Windows Live Photo Common
"{859D4022-B76D-40DE-96EF-C90CDA263F44}" = Windows Live Writer
"{86095E92-1959-8364-920E-82E81F64F8FB}" = AMD VISION Engine Control Center
"{86CE85E6-DBAC-3FFD-B977-E4B79F83C909}" = Microsoft Visual C++ 2008 Redistributable - KB2467174 - x86 9.0.30729.5570
"{86DDDAAD-AEB9-42E5-BE01-0E8FABD2BB29}" = Roxio Video Capture USB
"{873E4648-6F6E-47F6-A7B2-A6F8DFABDCE6}" = Windows Live Messenger
"{89D05F35-933A-89C0-B935-C92BEE4229BD}" = CCC Help French
"{8C6D6116-B724-4810-8F2D-D047E6B7D68E}" = Mesh Runtime
"{8DD46C6A-0056-4FEC-B70A-28BB16A1F11F}" = MSVCRT
"{8ECEC853-5C3D-4B10-B5C7-FF11FF724807}" = Nero Recode 10
"{90110409-6000-11D3-8CFE-0150048383C9}" = Microsoft Office Professional Edition 2003
"{90140000-2005-0000-0000-0000000FF1CE}" = Microsoft Office File Validation Add-In
"{9043B9A0-9505-405B-8202-E7167A38A89C}" = CorelDRAW Essentials 4
"{9193490D-5229-4FC4-9BB9-A6D63C09574A}" = High-Definition Video Playback
"{92E25238-61A3-4ACD-A407-3C480EEF47A7}" = Nero RescueAgent 10 Help (CHM)
"{92EA4134-10D1-418A-91E1-5A0453131A38}" = Windows Live Movie Maker
"{93E464B3-D075-4989-87FD-A828B5C308B1}" = Windows Live Writer Resources
"{943CFD7D-5336-47AF-9418-E02473A5A517}" = Nero BurnRights 10
"{95140000-0070-0000-0000-0000000FF1CE}" = Microsoft Office 2010
"{9569E6BC-326A-432F-97AB-35263A327BF1}" = Roxio Burn - Secure
"{959E4378-CCA1-E4E4-2425-793DA92E8D95}" = CCC Help Czech
"{96BB3C67-4EB4-9757-E0C2-C0D2FE9053B1}" = CCC Help Turkish
"{974F4B73-2017-E174-9070-3F58F01B341F}" = CCC Help Danish
"{98E20A18-3C29-86FA-50B4-918C2B34A082}" = CCC Help Hungarian
"{9A25302D-30C0-39D9-BD6F-21E6EC160475}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.17
"{9A4297F3-2A51-4ED9-92CA-4BCB8380947E}" = Nero Vision 10
"{9A5F1282-D6F8-4F04-B73E-D9286924E9AC}" = Roxio Creator 2011 Pro
"{9B6B24BE-80E7-46C4-9FA5-B167D5E0F345}" = Nero BurningROM 10 Help (CHM)
"{9BD262D0-B788-4546-A0A5-F4F56EC3834B}" = Windows Live Photo Common
"{9BE518E6-ECC6-35A9-88E4-87755C07200F}" = Microsoft Visual C++ 2008 Redistributable - x86 9.0.30729.6161
"{9C049499-055C-4a0c-A916-1D8CA1FF45EB}" = REALTEK Wireless LAN Driver and Utility
"{9D56775A-93F3-44A3-8092-840E3826DE30}" = Windows Live Mail
"{9E2E5EB3-DC6E-9277-E9DB-13175E7DDA39}" = CCC Help Dutch
"{9E48FF52-082C-4CC2-BB67-6E10D09C0431}" = Windows Live UX Platform Language Pack
"{9F717571-FEE8-45CD-8B03-5B2D06AD28F7}" = Roxio Creator 2011 Content
"{9FAE6E8D-E686-49F5-A574-0A58DFD9580C}" = Windows Live Mail
"{A0C91188-C88F-4E86-93E6-CD7C9A266649}" = Windows Live Mesh
"{A101F637-2E56-42C0-8E08-F1E9086BFAF3}" = Windows Live Movie Maker
"{A41A708E-3BE6-4561-855D-44027C1CF0F8}" = Windows Live Photo Common
"{A49F249F-0C91-497F-86DF-B2585E8E76B7}" = Microsoft Visual C++ 2005 Redistributable
"{A60B3BF0-954B-42AF-B8D8-2C1D34B613AA}" = Windows Live Photo Gallery
"{A726AE06-AAA3-43D1-87E3-70F510314F04}" = Windows Live Writer
"{A7A0BF2E-31CC-49E3-9913-52C503EB969D}" = Nero Audio Pack 1
"{A83279FD-CA4B-4206-9535-90974DE76654}" = Apple Application Support
"{A9024A22-FB0E-4DDC-AB93-44D686F7F491}" = Roxio CinePlayer
"{A92DAB39-4E2C-4304-9AB6-BC44E68B55E2}" = Google Update Helper
"{A9BDCA6B-3653-467B-AC83-94367DA3BFE3}" = Windows Live Photo Common
"{AAACC0A5-4382-04D0-C75E-0669C7B949B6}" = CCC Help Japanese
"{AAAFC670-569B-4A2F-82B4-42945E0DE3EF}" = Windows Live Writer
"{AADD1C8F-D59F-4D55-A726-768C71A205A8}" = Pinnacle Studio 14
"{AAF454FC-82CA-4F29-AB31-6A109485E76E}" = Windows Live Writer
"{AB05F2C8-F608-403b-95E1-FD8ADFACD31E}" = Windows 7 Upgrade Advisor
"{AB770FDE-8087-4C98-9A85-BD64262C104C}" = Medion Home Cinema
"{ABD8B955-1C69-4AF3-949B-13CD587C175F}" = CorelDRAW Essentials 4 - Lang BR
"{AC76BA86-7AD7-1033-7B44-AB0000000001}" = Adobe Reader XI (11.0.01)
"{AC76BA86-7AD7-5464-3428-900000000004}" = Spelling Dictionaries Support For Adobe Reader 9
"{ACEF4078-9B86-2455-E18D-34D52D37D9D5}" = CCC Help Chinese Standard
"{ACFBE99B-6981-4513-B17E-A2683CEB9EE5}" = Windows Live Mesh
"{ADE85655-8D1E-4E4B-BF88-5E312FB2C74F}" = Windows Live Mail
"{ADFE4AED-7F8E-4658-8D6E-742B15B9F120}" = Windows Live Photo Common
"{AF0CE7C0-A3E4-4D73-988B-B29187EC6E9A}" = QuickTime
"{B04A0E2F-1E4C-4E61-B18E-3B2BD6779CA7}" = Formant ActiveX programu Windows Live Mesh odpowiedzialny za obsługę połączeń zdalnych
"{B113D18C-67B0-4FB7-B329-E89B66194AE6}" = Windows Live Fotogalerie
"{B1239994-A850-44E2-BED8-E70A21124E16}" = Windows Live Mail
"{B55FB422-B803-11F5-5582-B3666EA1B9AC}" = Catalyst Control Center Localization All
"{B618C3BF-5142-4630-81DD-F96864F97C7E}" = Windows Live Essentials
"{B6214EA9-7BE8-4A91-B8B3-45F42F90188F}" = Readiris Pro 12
"{B8010864-15F8-613B-20EF-AC35B14B3E0D}" = CCC Help Russian
"{B87534F6-E2C5-45F0-A692-E02B8AF47332}" = Error Fix
"{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"{B9B1BA7F-7E07-49DD-A713-5B397A5BB66B}" = Nero Kwik Media Help (CHM)
"{B9FA9F15-A1F3-4DB1-AD49-0B9351843FAA}" = CorelDRAW Essentials 4 - Draw
"{BA9319FE-BCEF-4C99-8039-F464648D046E}" = CorelDRAW Essentials 4 - Lang FR
"{BD3EAE4D-862D-4D41-8BB5-F5C2CFFE6022}" = Roxio BackOnTrackPE
"{BD695C2F-3EA0-4DA4-92D5-154072468721}" = Windows Live Fotoğraf Galerisi
"{BE814218-3919-4EA3-868A-2F60BC135CB4}" = Nero Kwik Media
"{BEBEE34D-84A2-4EDD-8BEA-96CC54371263}" = Nero Core Components 11
"{BF022D76-9F72-4203-B8FA-6522DC66DFDA}" = Windows Live Movie Maker
"{BF35168D-F6F9-4202-BA87-86B5E3C9BF7A}" = Windows Live Mesh
"{C00C2A91-6CB3-483F-80B3-2958E29468F1}" = Συλλογή φωτογραφιών του Windows Live
"{C0237AA4-1BFB-46EA-860D-7B0EB365CA13}" = CorelDRAW Essentials 4 - ICA
"{C03F3D5B-0D83-4F81-A324-32F4E7F1BF6A}" = Roxio CinePlayer
"{C1342411-5A98-DE8A-5629-D0C518E1C280}" = CCC Help Finnish
"{C18A0418-442A-4186-AF98-D08F5054A2FC}" = Nero DiscSpeed 10 Help (CHM)
"{C29FC15D-E84B-4EEC-8505-4DED94414C59}" = Windows Live Writer Resources
"{C2AB7DC4-489E-4BE9-887A-52262FBADBE0}" = Windows Live Photo Common
"{C3273C55-E1E4-41FF-8D69-0158090DB8D8}" = Nero CoverDesigner 10 Help (CHM)
"{C32CE55C-12BA-4951-8797-0967FDEF556F}" = Windows Live Mesh - ActiveX-besturingselement voor externe verbindingen
"{C5398A89-516C-4DAF-BA07-EE7949090E56}" = Windows Live Mesh ActiveX control for remote connections
"{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"{C63A1E60-B6A4-440B-89A5-1FC6E4AC1C94}" = Windows Live Mesh ActiveX Control for Remote Connections
"{C66824E4-CBB3-4851-BB3F-E8CFD6350923}" = Windows Live Mail
"{C682F3F0-00A6-4379-B083-4F3273624D7B}" = CorelDRAW Essentials 4 - Lang ES
"{C82C515A-CAE3-44B3-B5CC-81C5E4A92E8F}" = Nero Prerequisite Installer 1.0
"{C8421D85-CA0E-4E93-A9A9-B826C4FB88EA}" = Windows Live Mail
"{C893D8C0-1BA0-4517-B11C-E89B65E72F70}" = Windows Live Photo Common
"{CA227A9D-09BE-4BFB-9764-48FED2DA5454}" = Kontrolnik Windows Live Mesh ActiveX za oddaljene povezave
"{CB3F59BB-7858-41A1-A7EA-4B8A6FC7D431}" = Galeria fotografii usługi Windows Live
"{CB7224D9-6DCA-43F1-8F83-6B1E39A00F92}" = Windows Live Movie Maker
"{CE95A79E-E4FC-4FFF-8A75-29F04B942FF2}" = Windows Live UX Platform
"{CF0ADC18-6D8F-4353-8EAA-DF45456B7853}" = CorelDRAW Essentials 4 - Windows Shell Extension
"{CF671BFE-6BA3-44E7-98C1-500D9C51D947}" = Windows Live Photo Gallery
"{D08B4177-5160-6B66-8934-2F9012134D61}" = CCC Help Thai
"{D0B44725-3666-492D-BEF6-587A14BD9BD9}" = MSVCRT_amd64
"{D1612A3D-0DCC-4055-BB6A-0036F31158A0}" = Setup
"{D1AEB5DB-04FA-489D-94EF-8600898B93EE}" = ICA
"{D2131BFA-A0D6-4FDE-8614-75B07A9B15EE}" = Windows Live UX Platform Language Pack
"{D24DB8B9-BB6C-4334-9619-BA1C650E13D3}" = Microsoft Primary Interoperability Assemblies 2005
"{D34A6029-FB1A-9EA8-A938-5393F82A3A00}" = CCC Help Korean
"{D3BCC13A-E4F2-45EE-846F-D143CEDDDBCB}" = DeviceIO
"{D436F577-1695-4D2F-8B44-AC76C99E0002}" = Windows Live Photo Common
"{D45240D3-B6B3-4FF9-B243-54ECE3E10066}" = Windows Live Communications Platform
"{D588365A-AE39-4F27-BDAE-B4E72C8E900C}" = Windows Live Mail
"{D5FFAC59-7519-4652-AD8C-FBFA97AEE1DA}" = DRIVERfighter
"{D7D99A66-493F-468B-BCE1-6F88612B89D5}" = Contents
"{D84B7C7E-2E4D-4002-8CA8-EED4EDB333AC}" = MLE
"{D875FFEE-2FCE-4774-902A-749198C00A68}" = PureHD
"{D94ABC2B-5CA9-48B2-9266-15AB78384D3C}" = Share
"{D9C4FA35-7C6B-4C9E-863B-58C4D7472F41}" = VIO
"{DA4A2F61-1E26-4D51-94BB-36D77678BDAD}" = PSPH10Pro
"{DA4BF4BE-3CDC-43B5-BBDA-DDDA73103111}" = Corel PaintShop Photo Pro X3
"{DAEF48AD-89C8-4A93-B1DD-45B7E4FB6071}" = Windows Live Movie Maker
"{DB1208F4-B2FE-44E9-BFE6-8824DBD7891B}" = Windows Live Movie Maker
"{DB7C1D4A-08BA-4C7E-A8AA-B7F9BB372DCF}" = Nero Recode 10 Help (CHM)
"{DCD941B6-F2E7-4FAF-B102-F7D4DE5FF99A}" = IPM_PSP_Pro
"{DCF1928A-FC01-48E7-A7E6-4651D42EF6A1}" = PSPPRO_DCRAW
"{DDC8BDEE-DCAC-404D-8257-3E8D4B782467}" = Windows Live Writer Resources
"{DE7C13A6-E4EA-4296-B0D5-5D7E8AD69501}" = Windows Live Writer
"{DE8F99FD-2FC7-4C98-AA67-2729FDE1F040}" = Windows Live Writer Resources
"{DECDCB7C-58CC-4865-91AF-627F9798FE48}" = Windows Live Mesh
"{DEF91E0F-D266-453D-B6F2-1BA002B40CB6}" = Windows Live Essentials
"{DF3666CC-CD4F-42CC-8D4E-A2187B54FC9A}" = Mozy Restore Manager
"{DF8B9311-ADE7-4EDE-B121-326CAA3D225D}" = PSPPContent
"{E09C4DB7-630C-4F06-A631-8EA7239923AF}" = D3DX10
"{E1C7EF5E-3A7B-4ED4-A48B-F70F1B36EAB4}" = Corel Paint Shop Pro Photo XI
"{E1EE5339-5D32-458F-BAAB-B19F6301BCE2}" = Nero SoundTrax 10
"{E2F0AF23-FE2F-4222-9A43-55E63CC41EF1}" = Catalyst Control Center - Branding
"{E337E787-CF61-4B7B-B84F-509202A54023}" = Nero RescueAgent 10
"{E38C00D0-A68B-4318-A8A6-F7D4B5B1DF0E}" = Windows Media Encoder 9 Series
"{E3A09D13-4D40-3CF8-7D32-8BD55F8D1533}" = CCC Help Spanish
"{E3D04529-6EDB-11D8-A372-0050BAE317E1}" = CyberLink PowerDVD Copy
"{E4E88B54-4777-4659-967A-2EED1E6AFD83}" = Windows Live Movie Maker
"{E54EEB5D-41ED-40FE-B4A8-8565DB81469B}" = Controlo ActiveX do Windows Live Mesh para Ligações Remotas
"{E55E0C35-AC3C-4683-BA2F-834348577B80}" = Windows Live Writer
"{E59969EA-3B5B-4B24-8B94-43842A7FBFE9}" = Fotogalerija Windows Live
"{E727A662-AF9F-4DEE-81C5-F4A1686F3DFC}" = Windows Live Writer Resources
"{E7688C7D-DE09-4D43-9785-534EDE9BC18E}" = Windows Live Messenger
"{E8524B28-3BBB-4763-AC83-0E83FE31C350}" = Windows Live Writer
"{E85A4EFC-82F2-4CEE-8A8E-62FDAD353A66}" = Galería fotográfica de Windows Live
"{E9D98402-21AB-4E9F-BF6B-47AF36EF7E97}" = Windows Live Writer Resources
"{EB4DF488-AAEF-406F-A341-CB2AAA315B90}" = Windows Live Messenger
"{ED16B700-D91F-44B0-867C-7EB5253CA38D}" = Raccolta foto di Windows Live
"{ED5776D5-59B4-46B7-AF81-5F2D94D7C640}" = Cisco PEAP Module
"{ED86C4AB-D1E5-42CF-BFA3-56BAAE617D4E}" = Windows Live UX Platform Language Pack
"{EDCDFAD5-DF80-4600-A493-E9DAD6810230}" = Nero WaveEditor 10
"{EE492B20-FB15-4A98-883C-3054354A11F8}" = Windows Live Messenger
"{F0B430D1-B6AA-473D-9B06-AA3DD01FD0B8}" = Microsoft SQL Server 2005 Compact Edition [ENU]
"{F0C3E5D1-1ADE-321E-8167-68EF0DE699A5}" = Microsoft Visual C++ 2010 x86 Redistributable - 10.0.40219
"{F132AF7F-7BCA-4EDE-8A7C-958108FE7DBC}" = Realtek High Definition Audio Driver
"{F16841F6-5F0F-4DBE-B318-63CEB916F21D}" = CorelDRAW Essentials 4 - Filters
"{F2C35491-9323-3AE7-6023-6B4128045153}" = CCC Help Swedish
"{F38406EE-EB4C-449E-B0EF-6887CA988124}" = Roxio Streamer Desktop Applications
"{F412B4AF-388C-4FF5-9B2F-33DB1C536953}" = Nero InfoTool 10
"{F5C372A1-40F3-49DA-A049-F75CDE9177DC}" = Pinnacle Studio Ultimate Collection Plugins
"{F5CB822F-B365-43D1-BCC0-4FDA1A2017A7}" = Nero 10 Movie ThemePack Basic
"{F6117F9C-ADB5-4590-9BE4-12C7BEC28702}" = Nero StartSmart 10 Help (CHM)
"{F61D489E-6C44-49AC-AD02-7DA8ACA73A65}" = Nero StartSmart 10
"{F665F3B8-01B4-46A9-8E47-FF8DC2208C9F}" = Στοιχείο ελέγχου ActiveX του Windows Live Mesh για απομακρυσμένες συνδέσεις
"{F80E5450-3EF3-4270-B26C-6AC53BEC5E76}" = Windows Live Movie Maker
"{F95E4EE0-0C6E-4273-B6B9-91FD6F071D76}" = Windows Live Essentials
"{FC66A32F-1A57-AC5C-4F12-DAC2F4CB77A0}" = CCC Help Chinese Traditional
"{FCDE76CB-989D-4E32-9739-6A272D2B0ED7}" = Windows Live Mesh
"{FCF00A6E-FB58-477A-ABE9-232907105521}" = Nero CoverDesigner 10
"{FE044230-9CA5-43F7-9B58-5AC5A28A1F33}" = Windows Live Essentials
"{FEEF7F78-5876-438B-B554-C4CC426A4302}" = Windows Live Essentials
"{FF3DFA01-1E98-46B4-A065-DA8AD47C9598}" = Windows Live Movie Maker
"{FFAC39DA-CF79-434B-A6E0-4055689667D9}" = Roxio CinePlayer Decoder Pack
"ActiveScan 2.0" = Panda ActiveScan 2.0
"Adobe Flash Player ActiveX" = Adobe Flash Player 11 ActiveX
"Adobe Flash Player Plugin" = Adobe Flash Player 11 Plugin
"Adobe Shockwave Player" = Adobe Shockwave Player 11.6
"Ashampoo Burning Studio_is1" = Ashampoo Burning Studio
"Ashampoo Photo Commander_is1" = Ashampoo Photo Commander
"Ashampoo Photo Optimizer_is1" = Ashampoo Photo Optimizer
"Ashampoo Snap_is1" = Ashampoo Snap
"Cakewalk Home Studio 9" = Cakewalk Home Studio 9
"CrossLoop_is1" = CrossLoop 2.82
"DRIVERfighter" = DRIVERfighter
"EasyBook_v41" = EasyBook v4.1 - Free 30 Day Trial
"greenstreet Publisher 4.01" = greenstreet Publisher 4.01
"greenstreet Utilities" = greenstreet Utilities
"InstallShield_{2F8BA3FD-1FA9-4279-B696-712ABB12F09F}" = SmartSound Quicktracks 5
"InstallShield_{40BF1E83-20EB-11D8-97C5-0009C5020658}" = CyberLink Power2Go
"InstallShield_{5442DAB8-7177-49E1-8B22-09A049EA5996}" = Renesas Electronics USB 3.0 Host Controller Driver
"InstallShield_{AB770FDE-8087-4C98-9A85-BD64262C104C}" = Medion Home Cinema
"InstallShield_{B8A2869E-30CA-40C5-9CF8-BD7354E57EF8}" = SmartSound Common Data
"InstallShield_{C59C179C-668D-49A9-B6EA-0121CCFC1243}" = CyberLink LabelPrint
"InstallShield_{E3D04529-6EDB-11D8-A372-0050BAE317E1}" = CyberLink PowerDVD Copy
"Knoll Light Factory EZ Studio" = Knoll Light Factory EZ Studio
"Magic Bullet Looks Studio" = Magic Bullet Looks Studio
"Malwarebytes' Anti-Malware_is1" = Malwarebytes Anti-Malware version 1.70.0.1100
"Pdf995" = Pdf995
"Red Giant ToonIt Studio" = Red Giant ToonIt Studio
"Registry Mechanic_is1" = PC Tools Registry Mechanic 11.1
"Roxio PhotoShow" = Roxio PhotoShow
"Trapcode 3DStroke Studio" = Trapcode 3DStroke Studio
"Trapcode Particular Studio" = Trapcode Particular Studio
"Trapcode Shine Studio" = Trapcode Shine Studio
"VPNUK Connection Assistant" = VPNUK Connection Assistant 9.0
"Windows Media Encoder 9" = Windows Media Encoder 9 Series
"WinLiveSuite" = Windows Live Essentials
"WinRAR archiver" = WinRAR 4.10 beta 2 (32-bit)

< End of report >

 

Logs JTR &

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Junkware Removal Tool (JRT) by Thisisu
Version: 4.6.5 (02.18.2013:1)
OS: Windows 7 Home Premium x64
Ran by Peter on 26/02/2013 at 23:55:41.65
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~




~~~ Services

Successfully stopped: [Service] suite service
Successfully deleted: [Service] suite service



~~~ Registry Values



~~~ Registry Keys

Successfully deleted: [Registry Key] hkey_local_machine\software\microsoft\internet explorer\searchscopes\{6a1806cd-94d4-4689-ba73-e35ea1ea9990}



~~~ Files



~~~ Folders

Successfully deleted: [Folder] "C:\ProgramData\fighters "
Successfully deleted: [Folder] "C:\Users\Peter\AppData\Roaming\fighters "
Successfully deleted: [Folder] "C:\Users\Peter\AppData\Roaming\registry mechanic "
Successfully deleted: [Folder] "C:\Program Files (x86)\fighters "
Successfully deleted: [Folder] "C:\Program Files (x86)\registry mechanic "



~~~ Event Viewer Logs were cleared





~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~
Scan was completed on 27/02/2013 at 0:03:05.25
End of JRT log
~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~


# AdwCleaner v2.113 - Logfile created 02/26/2013 at 23:19:45
# Updated 23/02/2013 by Xplode
# Operating system : Windows 7 Home Premium Service Pack 1 (64 bits)
# User : Peter - MEDION1-PC
# Boot Mode : Normal
# Running from : C:\Users\Peter\Desktop\adwcleaner.exe
# Option [Delete]


***** [Services] *****


***** [Files / Folders] *****

Folder Deleted : C:\ProgramData\Partner
Folder Deleted : C:\Users\Peter\AppData\Roaming\blekko

***** [Registry] *****

Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Settings\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Windows\CurrentVersion\Ext\Stats\{83FF80F4-8C74-4B80-B5BA-C8DDD434E5C4}
Key Deleted : HKCU\Software\Microsoft\Internet Explorer\SearchScopes\{3BD44F0E-0596-4008-AEE0-45D47E3A8F0E}

***** [Internet Browsers] *****

-\\ Internet Explorer v8.0.7601.17514

Replaced : [HKCU\Software\Microsoft\Internet Explorer\Main - Start Page] = hxxp://pandasecurity.mystart.com/?source=5b97eeb3&tbp=homepage&toolbarid=pandasecuritytb&v=4_0&u=FE93167A313C8884210127512BB406F8 --> hxxp://www.google.com

*************************

AdwCleaner[S1].txt - [1157 octets] - [26/02/2013 23:19:45]

########## EOF - C:\AdwCleaner[S1].txt - [1217 octets] ##########

 

more logs

Hi again, Broni.
I tried a logout etc. before trying your last set of fixes and BSOD, once more. Very pretty Half screen black the other Blue. Anyroad, new logs now attached:
All processes killed
Error: Unable to interpret <Code: > in the current context!
========== OTL ==========
64bit-Registry key HKEY_LOCAL_MACHINE\Software\MozillaPlugins\@adobe.com/FlashPlayer\ deleted successfully.
Registry value HKEY_USERS\S-1-5-21-561210605-1100357726-2750954237-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{2318C2B1-4965-11D4-9B18-009027A5CD4F} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{2318C2B1-4965-11D4-9B18-009027A5CD4F}\ not found.
Registry value HKEY_USERS\S-1-5-21-561210605-1100357726-2750954237-1000\Software\Microsoft\Internet Explorer\Toolbar\WebBrowser\\{472734EA-242A-422B-ADF8-83D1E48CC825} deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{472734EA-242A-422B-ADF8-83D1E48CC825}\ not found.
Registry value HKEY_LOCAL_MACHINE\Software\Microsoft\Windows\CurrentVersion\Run\\ deleted successfully.
Starting removal of ActiveX control {8AD9C840-044E-11D1-B3E9-00805F499D93}
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Code Store Database\Distribution Units\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_CURRENT_USER\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Active Setup\Installed Components\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{8AD9C840-044E-11D1-B3E9-00805F499D93}\ not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\livecall\ deleted successfully.
File Protocol\Handler\livecall - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\ deleted successfully.
File Protocol\Handler\msdaipp - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\0x00000001\ not found.
File Protocol\Handler\msdaipp\0x00000001 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msdaipp\oledb\ not found.
File Protocol\Handler\msdaipp\oledb - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\msnim\ deleted successfully.
File Protocol\Handler\msnim - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap\ deleted successfully.
File Protocol\Handler\mso-offdap - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\mso-offdap11\ deleted successfully.
File Protocol\Handler\mso-offdap11 - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\skype4com\ deleted successfully.
File Protocol\Handler\skype4com - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlmailhtml\ deleted successfully.
File Protocol\Handler\wlmailhtml - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Handler\wlpg\ deleted successfully.
File Protocol\Handler\wlpg - No CLSID value found not found.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\PROTOCOLS\Filter\ deleted successfully.
64bit-Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
64bit-Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
Registry value HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows\CurrentVersion\ShellServiceObjectDelayLoad\\WebCheck deleted successfully.
Registry key HKEY_LOCAL_MACHINE\SOFTWARE\Classes\CLSID\{E6FB5E20-DE35-11CF-9C87-00AA005127ED}\ not found.
ADS C:\ProgramData\Temp1B5B4F1 deleted successfully.
ADS C:\ProgramData\Temp:430C6D84 deleted successfully.
ADS C:\ProgramData\TempFC5A2B2 deleted successfully.
========== COMMANDS ==========

[EMPTYTEMP]

User: All Users

User: Default
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Default User
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 0 bytes

User: Fran
->Temp folder emptied: 0 bytes
->Temporary Internet Files folder emptied: 18024502 bytes
->Java cache emptied: 1738906 bytes
->Flash cache emptied: 1538 bytes

User: PDF files shared
->Temp folder emptied: 0 bytes

User: Peter
->Temp folder emptied: 363497 bytes
->Temporary Internet Files folder emptied: 37250281 bytes
->Java cache emptied: 348120 bytes
->Flash cache emptied: 3118 bytes

User: Public
->Temp folder emptied: 0 bytes

%systemdrive% .tmp files removed: 0 bytes
%systemroot% .tmp files removed: 0 bytes
%systemroot%\System32 .tmp files removed: 0 bytes
%systemroot%\System32 (64bit) .tmp files removed: 0 bytes
%systemroot%\System32\drivers .tmp files removed: 0 bytes
Windows Temp folder emptied: 7511 bytes
%systemroot%\sysnative\config\systemprofile\AppData\Local\Microsoft\Windows\Temporary Internet Files folder emptied: 50333 bytes
%systemroot%\sysnative\config\systemprofile\AppData\LocalLow\Sun\Java\Deployment folder emptied: 749 bytes
RecycleBin emptied: 907 bytes

Total Files Cleaned = 55.00 mb


[EMPTYJAVA]

User: All Users

User: Default

User: Default User

User: Fran
->Java cache emptied: 0 bytes

User: PDF files shared

User: Peter
->Java cache emptied: 0 bytes

User: Public

Total Java Files Cleaned = 0.00 mb


[EMPTYFLASH]

User: All Users

User: Default

User: Default User

User: Fran
->Flash cache emptied: 0 bytes

User: PDF files shared

User: Peter
->Flash cache emptied: 0 bytes

User: Public

Total Flash Files Cleaned = 0.00 mb


OTL by OldTimer - Version 3.2.69.0 log created on 02272013_011717

Files\Folders moved on Reboot...
C:\Users\Peter\AppData\Local\Temp\FXSAPIDebugLogFile.txt moved successfully.
File\Folder C:\Users\Peter\AppData\Local\Temp\~DF1A3221D7831816F7.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Temp\~DF1FDFE3E73E1CF5E0.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Temp\~DF5094538036225CD8.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Temp\~DF8DACDADD5A7E0568.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Temp\~DF9C1FFFF95714F59D.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Temp\~DFEE5062B32C86526B.TMP not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VLL2V5B3\p-01-0VIaSjnOLg[1].gif not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VLL2V5B3\pixel[1].htm not found!
C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\VLL2V5B3\xd_arbiter[1].htm moved successfully.
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\104878-active-bsod-win-7-malware-logs-2[1].htm not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\5174[1].htm not found!
C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\ads[1].htm moved successfully.
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\adTag[1].htm not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\ddc[1].htm not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\fastbutton[1].htm not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\SZ1SA4X7\visitormatch[1].htm not found!
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\H2SJZRYR\cse[1].htm not found!
C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G13J5ZNL\ads[1].htm moved successfully.
File\Folder C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\Content.IE5\G13J5ZNL\context_sync[1].htm not found!
C:\Users\Peter\AppData\Local\Microsoft\Windows\Temporary Internet Files\Low\AntiPhishing\2CEDBFBC-DBA8-43AA-B1FD-CC8E6316E3E2.dat moved successfully.

PendingFileRenameOperations files...

Registry entries deleted on Reboot...


Results of screen317's Security Check version 0.99.60
Windows 7 Service Pack 1 x64 (UAC is enabled)
Internet Explorer 8 Out of date!
``````````````Antivirus/Firewall Check:``````````````
Windows Firewall Enabled!
BullGuard Antivirus
Antivirus up to date!
`````````Anti-malware/Other Utilities Check:`````````
Malwarebytes Anti-Malware version 1.70.0.1100
Java(TM) 6 Update 37
Java 7 Update 13
Java version out of Date!
Adobe Flash Player 11.5.502.149 Flash Player out of Date!
Adobe Reader 9
Adobe Reader XI
````````Process Check: objlist.exe by Laurent````````
Malwarebytes' Anti-Malware mbamscheduler.exe
`````````````````System Health check`````````````````
Total Fragmentation on Drive C:
````````````````````End of Log``````````````````````



Farbar Service Scanner Version: 20-02-2013
Ran by Peter (administrator) on 27-02-2013 at 01:28:23
Running from "C:\Users\Peter\Desktop "
Windows 7 Home Premium Service Pack 1 (X64)
Boot Mode: Normal
****************************************************************

Internet Services:
============

Connection Status:
==============
Localhost is accessible.
LAN connected.
Google IP is accessible.
Google.com is accessible.
Yahoo IP is accessible.
Yahoo.com is accessible.


Windows Firewall:
=============

Firewall Disabled Policy:
==================


System Restore:
============

System Restore Disabled Policy:
========================


Action Center:
============

Windows Update:
============

Windows Autoupdate Disabled Policy:
============================


Windows Defender:
==============
WinDefend Service is not running. Checking service configuration:
The start type of WinDefend service is set to Demand. The default start type is Auto.
The ImagePath of WinDefend service is OK.
The ServiceDll of WinDefend service is OK.


Windows Defender Disabled Policy:
==========================
[HKEY_LOCAL_MACHINE\SOFTWARE\Microsoft\Windows Defender]
"DisableAntiSpyware "=DWORD:1


Other Services:
==============


File Check:
========
C:\Windows\System32\nsisvc.dll => MD5 is legit
C:\Windows\System32\drivers\nsiproxy.sys => MD5 is legit
C:\Windows\System32\dhcpcore.dll => MD5 is legit
C:\Windows\System32\drivers\afd.sys => MD5 is legit
C:\Windows\System32\drivers\tdx.sys => MD5 is legit
C:\Windows\System32\Drivers\tcpip.sys => MD5 is legit
C:\Windows\System32\dnsrslvr.dll => MD5 is legit
C:\Windows\System32\mpssvc.dll => MD5 is legit
C:\Windows\System32\bfe.dll => MD5 is legit
C:\Windows\System32\drivers\mpsdrv.sys => MD5 is legit
C:\Windows\System32\SDRSVC.dll => MD5 is legit
C:\Windows\System32\vssvc.exe => MD5 is legit
C:\Windows\System32\wscsvc.dll => MD5 is legit
C:\Windows\System32\wbem\WMIsvc.dll => MD5 is legit
C:\Windows\System32\wuaueng.dll => MD5 is legit
C:\Windows\System32\qmgr.dll => MD5 is legit
C:\Windows\System32\es.dll => MD5 is legit
C:\Windows\System32\cryptsvc.dll => MD5 is legit
C:\Program Files\Windows Defender\MpSvc.dll => MD5 is legit
C:\Windows\System32\svchost.exe => MD5 is legit
C:\Windows\System32\rpcss.dll => MD5 is legit


**** End of log ****

ESET:
C:\Windows\Installer\6f7f13.msi a variant of Win32/Adware.ErrorRepair application deleted - quarantined